CVE-2005-4777

Sažetak

Tashcom ASPEdit 2.9 stores the administration password (aka the FTP password) in cleartext in the registry, which might allow local users to view the password.

Reference

http://k.domaindlx.com/shellcore/advisories.asp?bug_report=display&infamous_group=94
http://securityreason.com/securityalert/37
http://securitytracker.com/id?1014989
http://www.osvdb.org/19744

CVSS

Base:	4.9
Impact:	6.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:N/A:N

Zadnje važnije ažuriranje

05-09-2008 - 20:57

Objavljeno

31-12-2005 - 05:00