exploitDog

CVE-2002-0235

Опубликовано: 29 мая 2002

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Castelle FaxPress, possibly 6.3 and other versions, when configured to use the Network print queue, allows attackers to obtain the username and password by submitting an incorrect login, which causes Faxpress to leak the correct username and password in plaintext in an error event.

Ссылки

http://online.securityfocus.com/archive/1/254168
Patch
Vendor Advisory
http://www.iss.net/security_center/static/8086.php
Vendor Advisory
http://www.securityfocus.com/bid/4030
Vendor Advisory
http://online.securityfocus.com/archive/1/254168
Patch
Vendor Advisory
http://www.iss.net/security_center/static/8086.php
Vendor Advisory
http://www.securityfocus.com/bid/4030
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:castelle:faxpress:6.3:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00801

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-r78p-5gvj-px53

github

почти 4 года назад

Castelle FaxPress, possibly 6.3 and other versions, when configured to use the Network print queue, allows attackers to obtain the username and password by submitting an incorrect login, which causes Faxpress to leak the correct username and password in plaintext in an error event.

EPSS

Процентиль: 74%

0.00801

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other