Vulnerabilities > CVE-2005-0288 - Unspecified vulnerability in Bottomline Webseries Payment Application 4.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change other users' passwords.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |