5
CVE-2010-0216
- EPSS 1.57%
- Veröffentlicht 10.05.2011 19:55:01
- Zuletzt bearbeitet 16.06.2026 23:15:43
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
Loginauthenticate_ad_setup_finished.cfm in MediaCAST 8 and earlier allows remote attackers to discover usernames and cleartext passwords by reading the error messages returned for requests that use the UserID parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Inventivetec ≫ Mediacast Version <= 8
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.57% | 0.721 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://secunia.com/advisories/44182
http://securityreason.com/securityalert/8245
http://www.osvdb.org/72079
http://www.packetninjas.net/storage/advisories/MediaCast-PWDump-FINAL.txt
http://www.securityfocus.com/bid/47572
https://exchange.xforce.ibmcloud.com/vulnerabilities/67082