Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:10321
Category:Web application abuses
Title:wwwboard passwd.txt
Summary:This WWWBoard board system comes with a password file (passwd.txt) installed; next to the file 'wwwboard.html'.
Description:Summary:
This WWWBoard board system comes with a password file (passwd.txt) installed
next to the file 'wwwboard.html'.

Vulnerability Impact:
An attacker may obtain the content of this file and decode the password to
modify the remote www board.

Solution:
Configure the wwwadmin.pl script to change the name and location of
'passwd.txt'.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 649
BugTraq ID: 12453
Common Vulnerability Exposure (CVE) ID: CVE-1999-0953
Bugtraq: 19980903 wwwboard.pl vulnerability (Google Search)
Bugtraq: 19990916 More fun with WWWBoard (Google Search)
CopyrightCopyright (C) 1999 Jonathan Provencher

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.