← volver
CVE-2001-1537

CVE-2001-1537

EPSS 1.1%
The default "basic" security setting' in config.php for TWIG webmail 2.7.4 and earlier stores cleartext usernames and passwords in cookies, which could allow attackers to obtain authentication information and gain privileges.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://archives.neohapsis.com/archives/bugtraq/2001-11/0245.htmlhttp://www.iss.net/security_center/static/7619.phphttp://www.securityfocus.com/bid/3591