Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1527

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-1527
Last Modified 03 Apr 2009 12:11:16
Published 31 Dec 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1527

Summary

easyNews 1.5 and earlier stores administration passwords in cleartext in settings.php, which allows local users to obtain the passwords and gain access.

Vulnerable Systems

Application

  • Easyscripts Easynews 1.5


References

XF - easynews-php-admin-passwd(7659)

BUGTRAQ - 20011201 easynews 1.5 let's remote users modify database


Last Updated: 27 May 2016 10:36:42