Vulnerabilities > CVE-2000-0074 - Unspecified vulnerability in Powerscripts Plusmail
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
PowerScripts PlusMail CGI program allows remote attackers to execute commands via a password file with improper permissions.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description PowerScripts PlusMail WebConsole 1.0 Poor Authentication Vulnerability (3). CVE-2000-0074. Remote exploit for cgi platform id EDB-ID:20801 last seen 2016-02-02 modified 2000-01-20 published 2000-01-20 reporter ytcracker source https://www.exploit-db.com/download/20801/ title PowerScripts PlusMail WebConsole 1.0 Poor Authentication Vulnerability 3 description PowerScripts PlusMail WebConsole 1.0 Poor Authentication Vulnerability (2). CVE-2000-0074. Remote exploit for cgi platform id EDB-ID:20800 last seen 2016-02-02 modified 2000-01-11 published 2000-01-11 reporter missnglnk source https://www.exploit-db.com/download/20800/ title PowerScripts PlusMail WebConsole 1.0 Poor Authentication Vulnerability 2 description PowerScripts PlusMail WebConsole 1.0 Poor Authentication Vulnerability (1). CVE-2000-0074. Remote exploit for cgi platform id EDB-ID:20799 last seen 2016-02-02 modified 2000-01-11 published 2000-01-11 reporter Synnergy Networks source https://www.exploit-db.com/download/20799/ title PowerScripts PlusMail WebConsole 1.0 Poor Authentication Vulnerability 1
Nessus
NASL family | CGI abuses |
NASL id | PLUSMAIL.NASL |
description | The |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 10181 |
published | 2000-01-12 |
reporter | This script is Copyright (C) 2000-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/10181 |
title | PlusMail plusmail CGI Arbitrary Command Execution |
code |
|