Vulnerabilities > CVE-2002-0486 - Unspecified vulnerability in Workforceroi Xpede 4.1/7.0

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

workforceroi

exploit available

NVD

Published: 2002-08-12

Updated: 2024-11-20

Summary

Intellisol Xpede 4.1 uses weak encryption to store authentication information in cookies, which could allow local users with access to the cookies to gain privileges.

Vulnerable Configurations

Part	Description	Count
Application	Workforceroi Workforceroi Xpede 4.1 Workforceroi Xpede 7.0	2

Exploit-Db

description	WorkforceROI Xpede 4.1/7.0 Weak Password Encryption Vulnerability. CVE-2002-0486. Local exploit for windows platform
id	EDB-ID:21351
last seen	2016-02-02
modified	2002-03-22
published	2002-03-22
reporter	c3rb3r
source	https://www.exploit-db.com/download/21351/
title	WorkforceROI Xpede 4.1/7.0 Weak Password Encryption Vulnerability

References

http://www.securityfocus.com/archive/1/263485
http://www.securityfocus.com/archive/1/263485
http://www.securityfocus.com/bid/4344
http://www.securityfocus.com/bid/4344
https://exchange.xforce.ibmcloud.com/vulnerabilities/8614
https://exchange.xforce.ibmcloud.com/vulnerabilities/8614