Vulnerabilities > CVE-2002-0705 - Information Disclosure vulnerability in Surfcontrol Superscout web Filter and web Filter
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The Web Reports Server for SurfControl SuperScout WebFilter stores the "scwebusers" username and password file in a web-accessible directory, which allows remote attackers to obtain valid usernames and crack the passwords.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |