ID OSVDB:6641 Type osvdb Reporter Jeff Forristal(jeff@neohapsis.com) Modified 1998-06-11T00:00:00
Description
Vulnerability Description
Dreamweaver contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to weakly encrypted passwords, which may lead to a loss of confidentiality.
Solution Description
Upgrade to version 4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
Short Description
Dreamweaver contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to weakly encrypted passwords, which may lead to a loss of confidentiality.
References:
Vendor URL: http://www.macromedia.com/software/dreamweaver/
Security Tracker: 1005529
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1998_2/0506.html
ISS X-Force ID: 1636
CVE-1999-1271
{"type": "osvdb", "published": "1998-06-11T00:00:00", "href": "https://vulners.com/osvdb/OSVDB:6641", "bulletinFamily": "software", "cvss": {"vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/", "score": 2.1}, "viewCount": 2, "edition": 1, "reporter": "Jeff Forristal(jeff@neohapsis.com)", "title": "Macromedia Dreamweaver Weak FTP Password Encryption", "affectedSoftware": [{"operator": "eq", "version": "3.01", "name": "Dreamweaver"}, {"operator": "eq", "version": "2", "name": "Dreamweaver"}], "enchantments": {"score": {"value": 5.1, "vector": "NONE", "modified": "2017-04-28T13:20:01", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-1999-1271"]}], "modified": "2017-04-28T13:20:01", "rev": 2}, "vulnersScore": 5.1}, "references": [], "id": "OSVDB:6641", "lastseen": "2017-04-28T13:20:01", "cvelist": ["CVE-1999-1271"], "modified": "1998-06-11T00:00:00", "description": "## Vulnerability Description\nDreamweaver contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to weakly encrypted passwords, which may lead to a loss of confidentiality.\n## Solution Description\nUpgrade to version 4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nDreamweaver contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to weakly encrypted passwords, which may lead to a loss of confidentiality.\n## References:\nVendor URL: http://www.macromedia.com/software/dreamweaver/\nSecurity Tracker: 1005529\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/1998_2/0506.html\nISS X-Force ID: 1636\n[CVE-1999-1271](https://vulners.com/cve/CVE-1999-1271)\n"}