Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1401

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2003-1401
Last Modified 05 Sep 2008 04:36:50
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2003-1401

Summary

login.php in php-Board 1.0 stores plaintext passwords in $username.txt with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information via a direct request.

Vulnerable Systems

Application

  • Php Board 1.0


References

XF - phpboard-login-plaintext-passwords(11338)

BID - 6862

VULNWATCH - 20030215 php-Board (php)


Last Updated: 27 May 2016 10:38:20