CVE-2000-1148

Опубликовано: 09 янв. 2001

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

The installation of VolanoChatPro chat server sets world-readable permissions for its configuration file and stores the server administrator passwords in plaintext, which allows local users to gain privileges on the server.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2000-11/0072.html
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2000-11/0085.html
Vendor Advisory
http://www.securityfocus.com/bid/1906
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5465
http://archives.neohapsis.com/archives/bugtraq/2000-11/0072.html
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2000-11/0085.html
Vendor Advisory
http://www.securityfocus.com/bid/1906
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5465

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:volano_llc:volanochatpro:2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00051

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-8xcj-rh5m-9gwr

github

больше 3 лет назад