Vulnerabilities > CVE-2002-0537 - Unspecified vulnerability in Stepweb SWS 2.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The admin.html file in StepWeb Search Engine (SWS) 2.5 stores passwords in links to manager.pl, which allows remote attackers who can access the admin.html file to gain administrative privileges to SWS.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |