Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0544

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2002-0544
Last Modified 05 Sep 2008 04:28:18
Published 03 Jul 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-0544

Summary

Aprelium Abyss Web Server (abyssws) before 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.

Vulnerable Systems

Application

  • Aprelium Technologies Abyss Web Server 1.0


References

BID - 4467

CONFIRM - http://www.aprelium.com/news/abws103.html


Last Updated: 27 May 2016 10:36:57