CVE-1999-1072 - CVE Details

Description

Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

excite - ews

Affected Versions:

References

http://marc.info/?l=bugtraq&m=91248445931140&w=2
http://marc.info/?l=bugtraq&m=91248445931140&w=2