VYPR
Unrated severityNVD Advisory· Published May 24, 2011· Updated Jun 16, 2026

CVE-2011-1424

CVE-2011-1424

Description

The default configuration of ExShortcut\Web.config in EMC SourceOne Email Management before 6.6 SP1, when the Mobile Services component is used, does not properly set the localOnly attribute of the trace element, which allows remote authenticated users to obtain sensitive information via ASP.NET Application Tracing.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:emc:sourceone_email_management:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:sourceone_email_management:*:*:*:*:*:*:*:*range: <=6.6.0.1209
    • cpe:2.3:a:emc:sourceone_email_management:6.5.2.3668:*:*:*:*:*:*:*
    • (no CPE)range: <6.6 SP1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.