Respondus 1.1.2 for WebCT uses weak encryption to remember usernames and passwords, which allows local users who can read the WEBCT.SVR file to decrypt the passwords and gain additional privileges.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://marc.info/?l=bugtraq&m=99859557930285&w=2 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2002-02-02T05:00:00
Updated: 2024-08-08T04:37:07.104Z
Reserved: 2002-01-31T00:00:00
Link: CVE-2001-1003
Vulnrichment
No data.
NVD
Status : Modified
Published: 2001-08-31T04:00:00.000
Modified: 2024-11-20T23:36:38.423
Link: CVE-2001-1003
Redhat
No data.