Vulnerabilities > CVE-2001-1003 - Local Security vulnerability in Webct Respondus 1.1.2

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

webct

exploit available

NVD

Published: 2001-08-31

Updated: 2016-10-18

Summary

Respondus 1.1.2 for WebCT uses weak encryption to remember usernames and passwords, which allows local users who can read the WEBCT.SVR file to decrypt the passwords and gain additional privileges.

Vulnerable Configurations

Part	Description	Count
Application	Webct Webct Respondus 1.1.2	1

Exploit-Db

description	Respondus for WebCT 1.1.2 Weak Password Encryption Vulnerability. CVE-2001-1003. Local exploits for multiple platform
id	EDB-ID:21078
last seen	2016-02-02
modified	2001-08-23
published	2001-08-23
reporter	Desmond Irvine
source	https://www.exploit-db.com/download/21078/
title	Respondus for WebCT 1.1.2 Weak Password Encryption Vulnerability

References

http://marc.info/?l=bugtraq&m=99859557930285&w=2