Vulnerabilities > CVE-2003-1482 - Credentials Management vulnerability in Microsoft Mn-500 Wireless Base Station

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

microsoft

CWE-255

NVD

Published: 2003-12-31

Updated: 2008-09-05

Summary

The backup configuration file for Microsoft MN-500 wireless base station stores administrative passwords in plaintext, which allows local users to gain access.

Vulnerable Configurations

Part	Description	Count
Hardware	Microsoft Microsoft MN 500 Wireless Base Station *	1

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

http://securitytracker.com/id?1006691
http://www.kurczaba.com/html/security/0305031.htm
http://www.securityfocus.com/bid/7496