Lucene search

[email protected]CVE-1999-1372

HistoryFeb 19, 1999 - 5:00 a.m.

CVE-1999-1372

1999-02-1905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

triactive remote manager

cve-1999-1372

basic authentication

privilege escalation

7.8 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local users to gain privileges.

CPENameOperatorVersion
triactive:remote_managementtriactive remote managementeq*

CPE	Name	Operator	Version
triactive:remote_management	triactive remote management	eq	*

References

marc.info/?l=bugtraq&m=91966339502073&w=2

7.8 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON