Authentication mechanism is vulnerable to man-in-the-midle attack (replay attack and cleartext recovery).
vulners.com/securityvulns/securityvulns:doc:8589