Vulnerabilities > CVE-2005-1733 - Remote Security vulnerability in Cookie Cart

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
metro-marketing

Summary

Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and encrypted passwords via a direct request to passwd.txt.

Vulnerable Configurations

Part Description Count
Application
Metro_Marketing
1