Blackboard Inc. Information for VU#204055
Blackboard Transact database credentials disclosure
- Vendor Information Help Date Notified: 02 Jul 2010
- Statement Date:
- Date Updated: 23 Sep 2010
Status
Affected
Vendor Statement
No statement is currently available from the vendor regarding this vulnerability.
Vendor Information
The vendor recommends users upgrade to Blackboard Transact Suite 3.6 Patch 2 (version 3.6.0.2) to address the vulnerability in the BbtsConnection_Edit.exe utility.
The vendor recommends users upgrade to Blackboard Transact Suite 3.6 Patch 4 (version 3.6.0.4) to address the issue of database username and password in clear text inside of multiple script and batch (.bat) files that are used for automated backups.
Vendor References
None
Addendum
If you have feedback, comments, or additional information about this vulnerability, please send us email.
View Notes By
Report a Vulnerability
Please use the Vulnerability Reporting Form to report a vulnerability. Alternatively, you can send us email. Be sure to read our vulnerability disclosure policy.