Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7207

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2008-7207
Last Modified 11 Sep 2009 12:00:00
Published 11 Sep 2009 12:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-7207

Summary

RivetTracker before 1.0 stores passwords in cleartext in config.php, which allows local users to discover passwords by reading config.php.

Vulnerable Systems

Application

  • Rivetcode Rivettracker 0.1

  • Rivetcode Rivettracker 0.8


References

CONFIRM - http://www.rivetcode.com/files/rivettracker/rivettracker_1-0.zip

OSVDB - 42433


Last Updated: 27 May 2016 10:49:30