Description
The console in AirMagnet Enterprise before 7.5 build 6307 does not properly validate the Enterprise Server certificate, which allows remote attackers to read network traffic via a man-in-the-middle (MITM) attack, possibly related to the use of self-signed certificates.
Affected products
- airmagnet / enterprise7.5 – 7.5
References
- MISChttp://www.osvdb.org/29921
- MISChttp://www.securityfocus.com/archive/1/449119/100/200/threaded
- MISChttp://www.securityfocus.com/bid/20602
- MISChttp://www.securityfocus.com/archive/1/449739/100/100/threaded
- MISChttp://www.securityfocus.com/archive/1/451978/100/100/threaded
- VENDOR_ADVISORYhttp://secunia.com/advisories/22475