EMC SourceOne Email Supervisor before 7.2 uses hardcoded encryption keys, which makes it easier for attackers to obtain access by examining how a program's code conducts cryptographic operations.
EMC SourceOne Email Supervisor Reviewer is vulnerable to brute-force password guessing, cross site scripting, session hijacking, and use of hard-coded encryption key vulnerabilities.