CVE-2002-1909

2005-06-2804:00:00

mitre

www.cve.org

click2learn

lms

hashed password

config.txt

remote attackers

AI Score

6.8

Confidence

Low

EPSS

0.005

Percentile

77.6%

JSON

Click2Learn Ingenium Learning Management System 5.1 and 6.1 stores the hashed administrative password in a config.txt file under the htdocs directory, which allows remote attackers to obtain the administrative password.

References

online.securityfocus.com/archive/1/295309

www.iss.net/security_center/static/10387.php

www.securityfocus.com/bid/5969