CVE-1999-1072

1998-11-30T05:00:00
ID CVE-1999-1072
Type cve
Reporter cve@mitre.org
Modified 2016-10-18T02:00:00

Description

Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi.