CVE-2002-1656 in X-Newsinformación

Resumen

por MITRE

X-News (x_news) 1.1 and earlier allows attackers to authenticate as other users by obtaining the MD5 checksum of the password, e.g. via sniffing or the users.txt data file, and providing it in a cookie.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

2005-03-29

Divulgación

2002-12-31

Moderación

aceptado

Artículo

VDB-19301

CPE

listo

CWE

CWE-311 (confirmado)

Explotación

Descargar

CVSS

7.5 (NVD)

EPSS

0.03942

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-1656
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1656
CVE Details	https://www.cvedetails.com/cve/CVE-2002-1656/

◂ Anterior Visión De Conjunto Próximo ▸

Interested in the pricing of exploits?

See the underground prices here!