Vulnerabilities > CVE-2002-1353 - Unspecified vulnerability in Intranet-Server Localweb2000 2.1.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
LocalWEB2000 HTTP server 2.1.0 stores passwords in plain text under the web document root in users.lst, which allows remote attackers to obtain the passwords via a direct request to users.lst.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://secunia.com/advisories/7740/
- http://secunia.com/advisories/7740/
- http://securitytracker.com/id?1005830
- http://securitytracker.com/id?1005830
- http://www.idefense.com/application/poi/display?id=31&type=vulnerabilities&flashstatus=false
- http://www.idefense.com/application/poi/display?id=31&type=vulnerabilities&flashstatus=false
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10948
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10948