Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0607

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-1999-0607
Last Modified 09 Sep 2008 08:35:07
Published 20 Apr 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-0607

Summary

quikstore.cgi in QuikStore shopping cart stores quikstore.cfg under the web document root with insufficient access control, which allows remote attackers to obtain the cleartext administrator password and gain privileges.

Vulnerable Systems

Application

  • I-soft Quikstore


References

BUGTRAQ - 19990420 Shopping Carts exposing CC data


Last Updated: 27 May 2016 10:35:03