CVE-2002-0537

High

10/10

Summary

The admin.html file in StepWeb Search Engine (SWS) 2.5 stores passwords in links to manager.pl, which allows remote attackers who can access the admin.html file to gain administrative privileges to SWS.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: COMPLETE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Jul 03, 2002

CVE-2002-0537

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS