Vulnerabilities > CVE-2005-3209 - Unspecified vulnerability in Aenovo Aenovo, Aenovoshop and Aenovowysi

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

aenovo

NVD

Published: 2005-10-14

Updated: 2024-11-21

Summary

Aenovo products (1) aeNovo, (2) aeNovoShop, and (3) aeNovoWYSI store password information in plaintext in the (a) control, (b) content, and (c) page tables, which allows attackers with database access to obtain those passwords and gain privileges.

Vulnerable Configurations

Part	Description	Count
Application	Aenovo Aenovo Aenovoshop * Aenovo Aenovowysi * Aenovo Aenovo *	3

References

http://marc.info/?l=bugtraq&m=112872593432359&w=2
http://marc.info/?l=bugtraq&m=112872593432359&w=2
http://secunia.com/advisories/17117/
http://secunia.com/advisories/17117/
http://www.kapda.ir/advisory-78.html
http://www.kapda.ir/advisory-78.html
http://www.osvdb.org/19939
http://www.osvdb.org/19939
https://exchange.xforce.ibmcloud.com/vulnerabilities/22549
https://exchange.xforce.ibmcloud.com/vulnerabilities/22549