Skip to main content

CVE-2005-0288

Severity Low
Score 3.6/10

Summary

The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change other users' passwords.

  • LOW
  • LOCAL
  • NONE
  • PARTIAL
  • NONE
  • PARTIAL

References

Advisory Timeline

  • Published