Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1277

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-1999-1277
Last Modified 05 Sep 2008 04:19:08
Published 24 Dec 1998 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1277

Summary

BackWeb client stores the username and password in cleartext for proxy authentication in the Communication registry key, which could allow other local users to gain privileges by reading the password.

Vulnerable Systems

Application

  • Backweb Technologies Backweb Client


References

XF - backweb-cleartext-passwords(1565)

NTBUGTRAQ - 19981224 BackWeb - Password issue (used by NAI for Corporate customer notification).


Last Updated: 27 May 2016 10:35:22