2 matches found
CVE-2002-0920
CGIScript.net csPassword.cgi stores usernames and unencrypted passwords in the password.cgi.tmp temporary file while modifying data, which could allow local users and possibly remote attackers to gain privileges by stealing the file before it has been processed...
CVE-2002-0920
The CVE-2002-0920 entry describes a vulnerability in CGIScript.net csPassword.cgi where usernames and unencrypted passwords are written to the temporary file password.cgi.tmp during data modification. The underlying issue is that sensitive credentials are stored in a world-readable/accessible tem...