CVE-2003-0499

Low

3.6/10

Summary

Mantis 0.17.5 and earlier stores its database password in cleartext in a world-readable configuration file, which allows local users to perform unauthorized database operations.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Aug 07, 2003

CVE-2003-0499

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS