Skip to main content

Credentials Management Errors

CVE-2012-1977

Severity High
Score 7.1/10

Summary

WellinTech KingSCADA 3.0 uses a cleartext base64 format for storage of passwords in user.db, which allows context-dependent attackers to obtain sensitive information by reading this file.

  • MEDIUM
  • NETWORK
  • NONE
  • NONE
  • COMPLETE
  • NONE

CWE-255 - Credentials Management Errors

Weaknesses in this category are related to the management of credentials.

References

Advisory Timeline

  • Published