Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0492

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0492
Last Modified 10 Sep 2008 03:04:48
Published 04 Jun 2000 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0492

Summary

PassWD 1.2 uses weak encryption (trivial encoding) to store passwords, which allows an attacker who can read the password file to easliy decrypt the passwords.

Vulnerable Systems

Application

  • Passwd 1.2


References

BUGTRAQ - 20000609 Insecure encryption in PassWD v1.2

BID - 1300


Last Updated: 27 May 2016 10:35:44