CVE-2009-4845 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2009-4845

CWE

https://cwe.mitre.org/data/definitions/310.html

The configuration page in ToutVirtual VirtualIQ Pro 3.2 build 7882 contains cleartext SSH credentials, which allows remote attackers to obtain sensitive information by reading the username and password fields.

Affected Software

Name	Vendor	Start Version	End Version
Virtualiq	Toutvirtual	3.2 (including)	3.2 (including)

References

http://www.securenetwork.it/ricerca/advisory/download/SN-2009-02.txt
http://www.securityfocus.com/archive/1/507729/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/58575