CVE-2001-1463

The remote administration client for RhinoSoft Serv-U 3.0 sends the user password in plaintext even when S/KEY One-Time Password (OTP) authentication is enabled, which allows remote attackers to sniff passwords.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:solarwinds:serv-u_file_server:3.0.0.16:*:*:*:*:*:*:*
cpe:2.3:a:solarwinds:serv-u_file_server:3.0.0.17:*:*:*:*:*:*:*

History

No history.

Information

Published : 2001-11-19 05:00

Updated : 2023-12-10 10:17


NVD link : CVE-2001-1463

Mitre link : CVE-2001-1463

CVE.ORG link : CVE-2001-1463


JSON object : View

Products Affected

solarwinds

  • serv-u_file_server
CWE
CWE-310

Cryptographic Issues