Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0415

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-0415
Last Modified 05 Sep 2008 04:24:03
Published 27 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0415

Summary

REDIPlus program, REDI.exe, stores passwords and user names in cleartext in the StartLog.txt log file, which allows local users to gain access to other accounts.

Vulnerable Systems

Application

  • Rediplus 1.0


References

XF - rediplus-weak-security

BID - 2495

BUGTRAQ - 20010320 Password stored in clear text vulnerability in real time stock trading program


Last Updated: 27 May 2016 10:36:15