Vulnerabilities > CVE-2002-0486 - Weak Password Encryption vulnerability in Workforceroi Xpede 4.1/7.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Intellisol Xpede 4.1 uses weak encryption to store authentication information in cookies, which could allow local users with access to the cookies to gain privileges.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | WorkforceROI Xpede 4.1/7.0 Weak Password Encryption Vulnerability. CVE-2002-0486. Local exploit for windows platform |
| id | EDB-ID:21351 |
| last seen | 2016-02-02 |
| modified | 2002-03-22 |
| published | 2002-03-22 |
| reporter | c3rb3r |
| source | https://www.exploit-db.com/download/21351/ |
| title | WorkforceROI Xpede 4.1/7.0 Weak Password Encryption Vulnerability |