Vulnerability Details CVE-2002-1022
BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2002-07/0143.html
- http://www.iss.net/security_center/static/9558.php
- http://www.securityfocus.com/bid/5228
- http://archives.neohapsis.com/archives/bugtraq/2002-07/0143.html
- http://www.iss.net/security_center/static/9558.php
- http://www.securityfocus.com/bid/5228
Products affected by CVE-2002-1022
-
cpe:2.3:a:working_resources_inc.:badblue:1.7.3_enterprise
-
cpe:2.3:a:working_resources_inc.:badblue:1.7.3_personal