Executive Summary

Informations
NameCVE-2002-1946First vendor Publication2002-12-31
VendorCveLast vendor Modification2008-09-05

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score2.1Attack RangeLocal
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Videsh Sanchar Nigam Limited (VSNL) Integrated Dialer Software 1.2.000, when the "Save Password" option is used, stores the password with a weak encryption scheme (one-to-one mapping) in a registry key, which allows local users to obtain and decrypt the password.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1946

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-20Encryption Brute Forcing
CAPEC-112Brute Force

CWE : Common Weakness Enumeration

%idName

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

Open Source Vulnerability Database (OSVDB)

idDescription
59784Videsh Sanchar Nigam Limited (VSNL) Integrated Dialer Software Password Encry...

Sources (Detail)

SourceUrl
BUGTRAQ http://archives.neohapsis.com/archives/bugtraq/2002-10/0438.html
XF http://www.iss.net/security_center/static/10517.php

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2013-05-11 12:14:53
  • Multiple Updates