CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-2281

HIGH
7.5
CVSS Severity Score
EPSS Score0.1260%
EPSS Percentile44.92th
Published2005年7月18日
Last Modified2026年4月16日

Vulnerability Description

WebEOC before 6.0.2 uses a weak encryption scheme for passwords, which makes it easier for attackers to crack passwords.

Affected Platforms (CPE)

📦
Juvare

Webeoc

< 6.0.2

References & Advisories

🔗 http://www.kb.cert.org/vuls/id/491770
🔗 http://www.kb.cert.org/vuls/id/JGEI-6BWQDQ
🔗 http://www.kb.cert.org/vuls/id/491770
🔗 http://www.kb.cert.org/vuls/id/JGEI-6BWQDQ

関連する脆弱性情報

CVE-2005-228610.0

WebEOC before 6.0.2 does not properly check user authorization, which allows remote attackers to gain privileges via a direct requ...

CVE-2005-22847.5

Multiple SQL injection vulnerabilities in WebEOC before 6.0.2 allow remote attackers to modify SQL statements via unknown attack v...

CVE-2005-22855.0

WebEOC before 6.0.2 stores sensitive information in locations such as URIs, web pages, and configuration files, which allows remot...

CVE-2005-40295.0

WebEOC before 6.0.2 allows remote attackers to obtain valid usernames via the HTML source of the WebEOC login webpage, which could...