Blackboard Inc. Information for VU#204055
Blackboard Transact database credentials disclosure
- Vendor Information Help Date Notified: 02 Jul 2010
- Statement Date:
- Date Updated: 23 Sep 2010
No statement is currently available from the vendor regarding this vulnerability.
The vendor recommends users upgrade to Blackboard Transact Suite 3.6 Patch 2 (version 220.127.116.11) to address the vulnerability in the BbtsConnection_Edit.exe utility.
The vendor recommends users upgrade to Blackboard Transact Suite 3.6 Patch 4 (version 18.104.22.168) to address the issue of database username and password in clear text inside of multiple script and batch (.bat) files that are used for automated backups.