CVE-2002-1676

2005-06-2104:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

BindView NetInventory 1.0, when used with NetRC 1.0, allows local users to read sensitive information (passwords) by deleting the HOSTCFG._NI file and forcing an audit, which rewrites the HOSTCFG._NI to HOSTCFG.INI and stores the passwords in cleartext until the audit is complete.

References

online.securityfocus.com/archive/1/252293

online.securityfocus.com/archive/1/256056

www.securityfocus.com/bid/3957

exchange.xforce.ibmcloud.com/vulnerabilities/7992