Vulnerabilities > CVE-2002-1530 - Unspecified vulnerability in Surfcontrol Superscout Email Filter 3.5/3.5.1/4.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN surfcontrol
exploit available
Summary
The administrative web interface (STEMWADM) for SurfControl SuperScout Email Filter allows users to obtain usernames and plaintext passwords via a request to the userlist.asp program, which includes the passwords in a user editing form.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Exploit-Db
| description | SurfControl SuperScout Email Filter 3.5 User Credential Disclosure Vulnerability. CVE-2002-1530. Webapps exploit for asp platform |
| id | EDB-ID:21925 |
| last seen | 2016-02-02 |
| modified | 2002-10-08 |
| published | 2002-10-08 |
| reporter | ken@FTU |
| source | https://www.exploit-db.com/download/21925/ |
| title | SurfControl SuperScout Email Filter 3.5 User Credential Disclosure Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0137.html
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0137.html
- http://www.iss.net/security_center/static/10320.php
- http://www.iss.net/security_center/static/10320.php
- http://www.securityfocus.com/bid/5929
- http://www.securityfocus.com/bid/5929