nvd-json-data-feeds/CVE-2001/CVE-2001-09xx/CVE-2001-0990.json

{
  "id": "CVE-2001-0990",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2001-09-04T04:00:00.000",
  "lastModified": "2017-12-19T02:29:30.067",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, compiles authentication information in cleartext into the libvpopmail.a library, which allows local users to obtain the MySQL username and password by inspecting the vpopmail programs that use the library."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "accessVector": "LOCAL",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": true,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "85F4E493-79E9-49EF-9C8B-237F2FC771D9"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA8F2818-965F-45CB-842E-0BE3A9DC3606"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "FACEBAD4-B602-401B-A798-8BD440D62368"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "12D27D37-97E4-413F-A3B5-33E5CC7DD811"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB9D8F71-E669-41B9-9686-3C348669710B"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "A8F07EA2-D0D6-4CF2-A1E5-87C7FBE77E3B"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "48D21401-54EB-49FE-ACA6-CED2E7300D52"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "1F2078CF-E0F3-4CF2-AC4B-8F1B66C5D36B"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "D8ABFEF3-019C-46E7-841E-87EF8C6C9DFD"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "55281945-8C12-49C5-8B3A-C1247A2F2955"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "242098D4-C84A-4741-B651-2C8ABCF631DC"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:3.4.11e:*:*:*:*:*:*:*",
              "matchCriteriaId": "D907D537-B206-40B4-A27B-DEC45CEF0DF3"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:4.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB4FCDD9-2491-4B90-B70D-2BADFC2CE4F8"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:4.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FD37D2A-AA5C-4FA7-AB3E-27CA5FC2BB77"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:4.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D547D97-E996-4EE4-872F-1A3A0B28B2FB"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:4.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B56A0D4-31E8-4C3B-97CC-EDFA2EE0A271"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:4.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "C9BDA23C-8B7F-4BFF-AA66-5072AA79CF4B"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:inter7:vpopmail:4.9.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7F96550-7AFB-4978-84A2-FE903FB7A922"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://www.inter7.com/vpopmail/ChangeLog",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.securityfocus.com/archive/1/212036",
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.securityfocus.com/bid/3284",
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7076",
      "source": "cve@mitre.org"
    }
  ]
}