CVE-2003-1394

2003-12-31T05:00:00
ID CVE-2003-1394
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:29:00

Description

CoffeeCup Software Password Wizard 4.0 stores sensitive information such as usernames and passwords in a .apw file under the web document root with insufficient access control, which allows remote attackers to obtain that information via a direct request for the file.