Lucene search
MitreCVE-2005-0522HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-0522
2005-05-0204:00:00
mitre
web.nvd.nist.gov
30
chat anywhere
sensitive information
plaintext
local users
privileges
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
0.4%
Chat Anywhere 2.72a stores sensitive information such as passwords in plaintext in the .INI file for a chatroom, which allows local users to gain privileges.
Affected configurations
Node
lionmax_softwarechat_anywhereMatch2.72a
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lionmax_software | chat_anywhere | 2.72a | cpe:2.3:a:lionmax_software:chat_anywhere:2.72a:*:*:*:*:*:*:* |
References
Related
nvd
nvd
CVE-2005-0522
2005-05-02 04:00:00
exploitdb
exploitdb
Chat Anywhere 2.72a - Local Password Disclosure
2005-02-23 00:00:00
cvelist
cvelist
CVE-2005-0522
2005-02-23 05:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
0.4%
Related for CVE-2005-0522