CVE-2002-1449

CVE-2002-1449

EPSS 2.7%

eUpload 1.0 stores the password.txt password file in plaintext under the web document root, which allows remote attackers to overwrite arbitrary files by reading password.txt.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://archives.neohapsis.com/archives/bugtraq/2002-07/0412.html http://www.iss.net/security_center/static/9733.php http://www.securityfocus.com/bid/5369