Lucene search

[email protected]CVE-1999-1561

HistoryAug 20, 1999 - 4:00 a.m.

CVE-1999-1561

1999-08-2004:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

nullsoft

shoutcast

cve-1999-1561

plaintext password

local user

administrative privileges

7.6 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to gain administrative privileges on the server.

CPENameOperatorVersion
nullsoft:shoutcast_servernullsoft shoutcast servereq1.9.7

CPE	Name	Operator	Version
nullsoft:shoutcast_server	nullsoft shoutcast server	eq	1.9.7

References

www.securityfocus.com/archive/1/24852

7.6 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON