CVE-2001-0990

Loading...

General

Score:4.6/10.0
Severity:Low
Category:N/A

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Local
Access Complexity:Low
Authentication:None

Published on 04/09/01 - Updated on 19/12/17

Description

Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, compiles authentication information in cleartext into the libvpopmail.a library, which allows local users to obtain the MySQL username and password by inspecting the vpopmail programs that use the library.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2001-0990

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
inter7vpopmail

Share this vulnerability with:

Twitter Facebook LinkedIn Mail