Vulnerabilities > CVE-1999-1073 - Unspecified vulnerability in Excite EWS 1.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Excite for Web Servers (EWS) 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |