CVE-2009-2312

EUVD-2009-2308
SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in config.txt and uses insecure permissions for this file, which allows local users to gain privileges.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.6 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
Affected Products (NVD)
VendorProductVersion
mcafeesmartfilter
4.2.1.00
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0314.html
http://secunia.com/advisories/34390
https://exchange.xforce.ibmcloud.com/vulnerabilities/49338
http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0314.html
http://secunia.com/advisories/34390
https://exchange.xforce.ibmcloud.com/vulnerabilities/49338