Vulnerabilities > CVE-2002-1530 - Unspecified vulnerability in Surfcontrol Superscout Email Filter 3.5/3.5.1/4.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
surfcontrol
exploit available
NVD
Published: 2003-03-31
Updated: 2008-09-05

Summary

The administrative web interface (STEMWADM) for SurfControl SuperScout Email Filter allows users to obtain usernames and plaintext passwords via a request to the userlist.asp program, which includes the passwords in a user editing form.

Vulnerable Configurations

Part Description Count
Application
Surfcontrol
3

Exploit-Db

descriptionSurfControl SuperScout Email Filter 3.5 User Credential Disclosure Vulnerability. CVE-2002-1530. Webapps exploit for asp platform
idEDB-ID:21925
last seen2016-02-02
modified2002-10-08
published2002-10-08
reporterken@FTU
sourcehttps://www.exploit-db.com/download/21925/
titleSurfControl SuperScout Email Filter 3.5 User Credential Disclosure Vulnerability

References