3 matches found
CVE-1999-1072
Excite for Web Servers (EWS) 1.1 is affected by a local-privilege escalation where an attacker who can read Architext.conf (world-readable) can obtain the encrypted password and replay it in an HTTP request to AT-generated.cgi or AT-admin.cgi to gain privileges. Root cause: the password is stored...
CVE-1999-1071
CVE-1999-1071 affects Excite for Web Servers (EWS) 1.1. The Architext.conf authentication file is installed with world-writable permissions, allowing local users to modify the file and gain access to Excite accounts. Root cause: insecure file permissions on the authentication file. Impact: confid...
CVE-1999-1073
Technical details about CVE-1999-1073 are not publicly provided in the supplied documents. Monitor for updates from NVD/CVE listings.