Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 06/12/2001 Updated: 19/12/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

ibillpm.pl in iBill password management system generates weak passwords based on a client's MASTER_ACCOUNT, which allows remote malicious users to modify account information in the .htpasswd file via brute force password guessing.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibill internet billing company processing plus

source: wwwsecurityfocuscom/bid/3476/info iBill is an Internet billing company that provides secure payment processing for e-commerce A vulnerability exists in iBill's CGI password management script called ibillpmpl The default password is the client's MASTER_ACCOUNT name plus two lower case letters The MASTER_ACCOUNT name can be det ...

NVD-CWE-Other http://www.securityfocus.com/bid/3476 http://marc.info/?l=bugtraq&m=100404371423927&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/7352 https://nvd.nist.gov https://www.exploit-db.com/exploits/21129/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2001-0839

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect