Vulnerability Details CVE-2000-1148
The installation of VolanoChatPro chat server sets world-readable permissions for its configuration file and stores the server administrator passwords in plaintext, which allows local users to gain privileges on the server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.9%
CVSS Severity
CVSS v2 Score 4.6
References
- http://archives.neohapsis.com/archives/bugtraq/2000-11/0072.html
- http://archives.neohapsis.com/archives/bugtraq/2000-11/0085.html
- http://www.securityfocus.com/bid/1906
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5465
- http://archives.neohapsis.com/archives/bugtraq/2000-11/0072.html
- http://archives.neohapsis.com/archives/bugtraq/2000-11/0085.html
- http://www.securityfocus.com/bid/1906
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5465
Products affected by CVE-2000-1148
-
cpe:2.3:a:volano_llc:volanochatpro:2.1