• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Macromedia Contribute Publishing Server Insecure Shared Connection Key Encryption Weakness

Macromedia CPS (Contribute Publishing Server) is susceptible to an insecure shared connection key encryption weakness. These shared connection keys are used in shared FTP login credentials.

This issue may allow remote attackers to decrypt the contents of network packets, gaining access to the cleartext contents of authentication credentials, aiding them in further attacks.

Versions prior to 1.11 of Macromedia CPS are susceptible to this issue.