Vulners
Lucene search
SnapStream PVS 1.2 - Plaintext Password
source: https://www.securityfocus.com/bid/3101/info
Snapstream Personal Video Station is an application for Microsoft Windows which allows users to record video output on their PC and view it at a later time, locally or via an HTTP interface. The Snapstream PVS web interface runs on port 8129.
The PVS service stores passwords and user information in plaintext format. Additional information is also contained in the same file which stores passwords, such as the location of the base directory for the service.
This would normally only be a local issue but in combination with other known vulnerabilities the file which stores passwords and user information is easily obtained.
Due to the issue discussed as Bugtraq ID 3100, the passwords can be disclosed to remote attackers.
http://home.victim.com:8080/../ssd.ini Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
26 Jul 2001 00:00Current
7.4High risk
Vulners AI Score7.4