Vulnerability Details CVE-1999-0372
The installer for BackOffice Server includes account names and passwords in a setup file (reboot.ini) which is not deleted.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.048
EPSS Ranking 88.9%
CVSS Severity
CVSS v2 Score 2.1
References
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ217004
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-005
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ217004
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-005
Products affected by CVE-1999-0372
-
cpe:2.3:a:microsoft:backoffice:4.0
-
cpe:2.3:o:microsoft:windows_2000:-
-
cpe:2.3:o:microsoft:windows_2000:beta3
-
cpe:2.3:o:microsoft:windows_nt:-
-
cpe:2.3:o:microsoft:windows_nt:3.0.1
-
cpe:2.3:o:microsoft:windows_nt:3.1
-
cpe:2.3:o:microsoft:windows_nt:3.5
-
cpe:2.3:o:microsoft:windows_nt:3.5.1
-
cpe:2.3:o:microsoft:windows_nt:3.51
-
cpe:2.3:o:microsoft:windows_nt:4.0