Vulnerability Details CVE-2005-3209
Aenovo products (1) aeNovo, (2) aeNovoShop, and (3) aeNovoWYSI store password information in plaintext in the (a) control, (b) content, and (c) page tables, which allows attackers with database access to obtain those passwords and gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 37.4%
CVSS Severity
CVSS v2 Score 4.6
References
- http://marc.info/?l=bugtraq&m=112872593432359&w=2
- http://secunia.com/advisories/17117/
- http://www.kapda.ir/advisory-78.html
- http://www.osvdb.org/19939
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22549
- http://marc.info/?l=bugtraq&m=112872593432359&w=2
- http://secunia.com/advisories/17117/
- http://www.kapda.ir/advisory-78.html
- http://www.osvdb.org/19939
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22549
Products affected by CVE-2005-3209
-
cpe:2.3:a:aenovo:aenovo:*
-
cpe:2.3:a:aenovo:aenovoshop:*
-
cpe:2.3:a:aenovo:aenovowysi:*