Vulnerabilities > CVE-2002-0933 - Unspecified vulnerability in Datalex Bookit Consumer
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Datalex PLC BookIt! Consumer before 2.2 stores usernames and passwords in plaintext in a cookie, which could allow remote attackers to gain privileges via Cross-site scripting or sniffing attacks.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0063.html
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0063.html
- http://www.iss.net/security_center/static/9316.php
- http://www.iss.net/security_center/static/9316.php
- http://www.securityfocus.com/bid/4972
- http://www.securityfocus.com/bid/4972