Vulnerabilities > CVE-2002-1676 - Unspecified vulnerability in Bindview Netinventory and Netrc
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
BindView NetInventory 1.0, when used with NetRC 1.0, allows local users to read sensitive information (passwords) by deleting the HOSTCFG._NI file and forcing an audit, which rewrites the HOSTCFG._NI to HOSTCFG.INI and stores the passwords in cleartext until the audit is complete.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |