CVE-1999-1322

Summary

CVE-1999-1322 is a vulnerability affecting the 1ArcServe Backup and Inoculan AV client modules for Exchange. The issue arises due to the creation of an unsecured log file, exchverify.log, during the installation process. This log file contains sensitive information, including usernames and passwords, which are stored in plaintext, posing a significant security risk if accessed by unauthorized users. Organizations that have deployed these modules are advised to take immediate steps to secure the log files or disable their logging features to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.