Sambar: >> Sambar Server >> 4.2.1_production Security Vulnerabilities
The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user passwords by cracking the key or modifying a copy of the sambar program to call the decryption procedure.
CVSS Score
7.5
EPSS Score
0.015
Published
2001-07-25