PT-2001-2134 · Idm Computer Solutions · Ultraedit

Published

2001-08-31

Updated

2016-10-18

CVE-2001-0983

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions UltraEdit (affected versions not specified)

Description The issue concerns the use of weak encryption by UltraEdit to store FTP passwords in the uedit32.ini file. This weakness allows local users with read access to the file to decrypt the passwords, potentially gaining privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0983

Affected Products

Ultraedit

PT-2001-2134 · Idm Computer Solutions · Ultraedit

CVE-2001-0983

Related Identifiers

Affected Products

References · 4