VDB

GCVE-110-CERTCC-2001-279763

GCVE-110-CERTCC-2001-279763
Advisory Published
Vulnetix · Advisory published November 19, 2001
A vulnerability exists in the remote administration client for RhinoSoft Serv-U. During the authentication process, the client ignores the S/KEY one-time password (OTP) challenge sent by the server and sends the password entered by the user in plaintext.

Risk Scores

certcc-cam
certcc-cam
impact14population5exploitation0widely_known15score_current4.738125ease_of_exploitation19

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›