Shared Secret Key Vulnerability in WebEOC Versions Prior to 6.0.2

Shared Secret Key Vulnerability in WebEOC Versions Prior to 6.0.2

CVE-2005-4002 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

WebEOC before 6.0.2 uses the same secret key for all installations, which allows attackers with the key to decrypt data from any WebEOC installation.

Learn more about our Web Application Penetration Testing UK.