Lucene search

[email protected]NVD:CVE-2000-0689

HistoryOct 20, 2000 - 4:00 a.m.

CVE-2000-0689

2000-10-2004:00:00

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.7%

JSON

Account Manager LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the amadmin.pl script with the setpasswd parameter.

Affected configurations

NVD

Node

cgi_script_centeraccount_managerMatchlite_1.0

cgi_script_centeraccount_managerMatchpro_1.0

References

archives.neohapsis.com/archives/bugtraq/2000-08/0291.html

www.cgiscriptcenter.com/acctlite/

www.osvdb.org/13341

www.securityfocus.com/bid/1604

exchange.xforce.ibmcloud.com/vulnerabilities/5125

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.7%

JSON

Related for NVD:CVE-2000-0689

cve1 cvelist1