CVE-2002-0544

Aprelium Abyss Web Server (abyssws) before 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.

Published: Jul 3, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0544
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
aprelium_technologies / abyss_web_server	1.0	1.0.x

http://www.aprelium.com/news/abws103.html
http://www.securityfocus.com/bid/4467

Vulnerability Database

CVE-2002-0544