Lucene search

[email protected]NVD:CVE-2005-0823

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0823

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

High

EPSS

Percentile

15.8%

JSON

ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores usernames and passwords in cleartext in the MyDetails.txt file, which allows local users to gain privileges.

Affected configurations

Nvd

Node

thepoolclubipoolRange≤1.6.81

thepoolclubisnookerRange≤1.6.8

VendorProductVersionCPE
thepoolclubipool*cpe:2.3:a:thepoolclub:ipool:*:*:*:*:*:*:*:*
thepoolclubisnooker*cpe:2.3:a:thepoolclub:isnooker:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
thepoolclub	ipool	*	cpe:2.3:a:thepoolclub:ipool::::::::
thepoolclub	isnooker	*	cpe:2.3:a:thepoolclub:isnooker::::::::

References

secunia.com/advisories/14629

securitytracker.com/id?1013458

securitytracker.com/id?1013459

www.securityfocus.com/bid/12830

exchange.xforce.ibmcloud.com/vulnerabilities/19717

exchange.xforce.ibmcloud.com/vulnerabilities/19718

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

High

EPSS

Percentile

15.8%

JSON

Related for NVD:CVE-2005-0823

cve1 exploitdb2 cvelist1