CVE-2002-0487

2002-08-12T04:00:00
ID CVE-2002-0487
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:28:00

Description

Intellisol Xpede 4.1 stores passwords in plaintext in a Javascript "session timeout" re-authentication capability, which could allow local users with access to gain privileges of other Xpede users by reading the password from the source file, e.g. from the browser's cache.