NotifyLink Enterprise Server Multiple Vulnerabilities

Solution:
NotifyLink 3.0 and subsequent versions are not affected by the password disclosure, SQL injection, and access control bypass issues. Please contact the vendor to obtain a fixed version.

The vendor has recommended that users configure NotifyLink to use "Manual Key Generation" to address the insecure key obfuscation issue.



 

Privacy Statement
Copyright 2010, SecurityFocus