CVE-2002-0537
Published Jul 3, 2002
Last updated 16 years ago
Overview
- Description
- The admin.html file in StepWeb Search Engine (SWS) 2.5 stores passwords in links to manager.pl, which allows remote attackers who can access the admin.html file to gain administrative privileges to SWS.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:stepweb:sws:2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27B6F214-9F79-4BD4-8DE7-49F517ABAE39"
}
],
"operator": "OR"
}
]
}
]