Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1071

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-1999-1071
Last Modified 05 Sep 2008 04:18:39
Published 30 Nov 1998 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1071

Summary

Excite for Web Servers (EWS) 1.1 installs the Architext.conf authentication file with world-writeable permissions, which allows local users to gain access to Excite accounts by modifying the file.

Vulnerable Systems

Application

  • Excite Ews 1.1


References

XF - excite-world-write(1417)

BUGTRAQ - 19981130 Security bugs in Excite for Web Servers 1.1


Last Updated: 27 May 2016 10:35:16