Reprise License Manager version 14.2 suffers from a missing authentication vulnerability that allows for password changing of any existing user. The vendor has contacted Packet Storm to note that version 15.1 has been released which includes a fix for this issue by requiring authentication to change a password.
79baa163dbede839bdb9c336503fd816ceecad6a454203e15d96d15ec3b68d0a