Lucene search
+L

8476 matches found

cvelist
cvelist
added 2004/09/01 4:0 a.m.15 views

CVE-2002-1491

The Cisco VPN 5000 Client for MacOS before 5.2.2 records the most recently used login password in plaintext when saving "Default Connection" settings, which could allow local users to gain privileges...

6.7AI score0.0116EPSS
Exploits0References4
cve
cve
added 2004/09/01 4:0 a.m.48 views

CVE-2001-1098

The CVE-2001-1098 entry applies to Cisco PIX Firewall Manager (PFM) 4.3(2)g. The vulnerability arises because the enable password is stored/logged in plaintext in the pfm.log, potentially allowing local users to read and obtain the enable password. Affected behavior: local access to the password ...

2.1CVSS6.4AI score0.00463EPSS
Exploits1References4Affected Software1
debiancve
debiancve
added 2004/09/01 4:0 a.m.27 views

CVE-2002-1479

Cacti before 0.6.8 stores a MySQL username and password in plaintext in config.php, which has world-readable permissions, which allows local users to modify databases as the Cacti user and possibly gain privileges...

4.6CVSS6.5AI score0.00467EPSS
Exploits1
cve
cve
added 2004/09/01 4:0 a.m.34 views

CVE-2002-1491

Cisco VPN 5000 Client for macOS before 5.2.2 stores the most recently used login password in plaintext when saving Default Connection settings, enabling local users to potentially gain privileges. Affected: MacOS client; root cause: plaintext storage of MRU password; impact: local privilege eleva...

5CVSS6.8AI score0.0116EPSS
Exploits0References4Affected Software1
cve
cve
added 2004/09/01 4:0 a.m.52 views

CVE-2002-1521

CVE-2002-1521 concerns Web Server 4D (WS4D) 3.6 or lower, which stores usernames and passwords in plaintext in the Ws4d.4DD file. The vulnerability enables a local attacker to gain privileges on the affected host by accessing the credential data. OpenVAS entries corroborate the 3.6-era behavior a...

2.1CVSS6.8AI score0.00349EPSS
Exploits0References3Affected Software1
cve
cve
added 2004/09/01 4:0 a.m.46 views

CVE-2002-1530

The CVE concerns SurfControl SuperScout Email Filter, specifically its administrative web interface STEMWADM. A vulnerability in the userlist.asp page allows an attacker to retrieve usernames and plaintext passwords via the user editing form, exposing credential data through the management UI. Th...

5CVSS6.8AI score0.05888EPSS
Exploits1References3Affected Software1
cve
cve
added 2004/09/01 4:0 a.m.55 views

CVE-2003-0007

CVE-2003-0007: Microsoft Outlook 2002 fails to properly handle requests to encrypt emails using V1 Exchange Server Security certificates, causing the message to be sent in plaintext. The connected documents corroborate the affected product and the underlying issue as described, but do not provide...

5CVSS6.8AI score0.03912EPSS
Exploits0References3Affected Software1
nessus
nessus
added 2004/08/18 12:0 a.m.15 views

Java Remote Management Platform Plaintext Password Detection

Binary data 4586.prm...

7.3AI score
Exploits0
nessus
nessus
added 2004/08/18 12:0 a.m.19 views

IBM DB2 9.x < 9 Fix Pack 5 Multiple Vulnerabilities

Binary data 4536.prm...

10CVSS7.3AI score0.05767EPSS
Exploits1References24
nessus
nessus
added 2004/08/18 12:0 a.m.14 views

MaxDB WebSQL < 7.5.00.18 Remote Overflow

Binary data 2528.prm...

7.5CVSS7.3AI score0.03842EPSS
Exploits1References2
nessus
nessus
added 2004/08/17 12:0 a.m.24 views

CVSTrac Database Plaintext Password Storage

The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version contains a flaw related to .db files that may allow an attacker to gain access to plaintext passwords. Nessus has determined the vulnerability exists on the target simply by looking at...

5.5AI score
Exploits0References2
nessus
nessus
added 2004/08/17 12:0 a.m.16 views

phpGroupWare Admin/Setup Password Plaintext Cookie Storage

The version of PhpGroupWare installed on the remote host is reported to be affected by a plaintext cookie authentication credentials information disclosure vulnerability. If web administration of PhpGroupWare is not conducted over an encrypted link, an attacker with the ability to sniff network...

5CVSS5.6AI score0.01425EPSS
Exploits0References2
nvd
nvd
added 2004/08/06 4:0 a.m.19 views

CVE-2004-0653

Solaris 9, when configured as a Kerberos client with patch 112908-12 or 115168-03 and using pamkrb5 as an "auth" module with the debug feature enabled, records passwords in plaintext, which could allow local users to gain other user's passwords by reading log files...

2.1CVSS6.6AI score0.0043EPSS
Exploits0References9
exploitpack
exploitpack
added 2004/07/15 12:0 a.m.18 views

MapInfo Discovery 1.01.1 - Remote Log File Access Information Disclosure

MapInfo Discovery 1.01.1 - Remote Log File Access Information Disclosure source: https://www.securityfocus.com/bid/10927/info Multiple remote vulnerabilities are reported in MapInfo Discovery. The first issue is reported to be an information disclosure vulnerability. An attacker may gain access t...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2004/07/15 12:0 a.m.10 views

MapInfo Discovery 1.01.1 - Administrative Authentication Bypass

MapInfo Discovery 1.01.1 - Administrative Authentication Bypass source: https://www.securityfocus.com/bid/10927/info Multiple remote vulnerabilities are reported in MapInfo Discovery. The first issue is reported to be an information disclosure vulnerability. An attacker may gain access to...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2004/07/15 12:0 a.m.13 views

MapInfo Discovery 1.01.1 - MapFrame.asp?mapname Cross-Site Scripting

MapInfo Discovery 1.01.1 - MapFrame.asp?mapname Cross-Site Scripting source: https://www.securityfocus.com/bid/10927/info Multiple remote vulnerabilities are reported in MapInfo Discovery. The first issue is reported to be an information disclosure vulnerability. An attacker may gain access to...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2004/07/15 12:0 a.m.16 views

MapInfo Discovery 1.01.1 - Cleartext Transmission Credential Disclosure

MapInfo Discovery 1.01.1 - Cleartext Transmission Credential Disclosure source: https://www.securityfocus.com/bid/10927/info Multiple remote vulnerabilities are reported in MapInfo Discovery. The first issue is reported to be an information disclosure vulnerability. An attacker may gain access to...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2004/07/15 12:0 a.m.24 views

MapInfo Discovery 1.0/1.1 - Cleartext Transmission Credential Disclosure

source: https://www.securityfocus.com/bid/10927/info Multiple remote vulnerabilities are reported in MapInfo Discovery. The first issue is reported to be an information disclosure vulnerability. An attacker may gain access to potentially sensitive error log information that could aid an attacker ...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2004/07/15 12:0 a.m.25 views

MapInfo Discovery 1.0/1.1 - Administrative Authentication Bypass

source: https://www.securityfocus.com/bid/10927/info Multiple remote vulnerabilities are reported in MapInfo Discovery. The first issue is reported to be an information disclosure vulnerability. An attacker may gain access to potentially sensitive error log information that could aid an attacker ...

7AI score
Exploits0
exploitdb
exploitdb
added 2004/07/15 12:0 a.m.22 views

MapInfo Discovery 1.0/1.1 - &#039;MapFrame.asp?mapname&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/10927/info Multiple remote vulnerabilities are reported in MapInfo Discovery. The first issue is reported to be an information disclosure vulnerability. An attacker may gain access to potentially sensitive error log information that could aid an attacker ...

7.4AI score
Exploits0
Rows per page
Query Builder