Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1003

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-1003
Last Modified 10 Sep 2008 03:09:30
Published 31 Aug 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1003

Summary

Respondus 1.1.2 for WebCT uses weak encryption to remember usernames and passwords, which allows local users who can read the WEBCT.SVR file to decrypt the passwords and gain additional privileges.

Vulnerable Systems

Application

  • Webct Respondus 1.1.2


References

BUGTRAQ - 20010823 Respondus v1.1.2 stores passwords using weak encryption


Last Updated: 27 May 2016 10:36:29