WatchGuard Firewall Clientless SSO sends out its password hashes to random devices on the network.::Picture this: a feature from a security appliance that willingly dispatches its password hashes to any device on the network. That is precisely what WatchGuard’s SSO does under certain circumstances. Does a bad feature warrant filing a CVE? I’m not sure.

  • sebinspace
    link
    31 year ago

    Why in the fuck would you do that?