Lucene search
HistoryAug 31, 2001 - 4:00 a.m.
CVE-2001-0983
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
0.4%
UltraEdit uses weak encryption to record FTP passwords in the uedit32.ini file, which allows local users who can read the file to decrypt the passwords and gain privileges.
Affected configurations
Node
ultraeditultraedit-32
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ultraedit | ultraedit-32 | * | cpe:2.3:a:ultraedit:ultraedit-32:*:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
UltraEdit 8.2 - FTP Client Weak Password Encryption
2001-08-23 00:00:00
cve
cve
CVE-2001-0983
2002-02-02 05:00:00
cvelist
cvelist
CVE-2001-0983
2002-02-02 05:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
0.4%
Related for NVD:CVE-2001-0983