Security Advisory

CVE-2001-1354

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2002-06-11 04:00:00

Last updated 2024-08-08 04:51:08

Assigner mitre

State PUBLISHED

Description

NetWin Authentication module (NWAuth) 2.0 and 3.0b, as implemented in SurgeFTP, DMail, and possibly other packages, uses weak password hashing, which could allow local users to decrypt passwords or use a different password that has the same hash value as the correct password.

← Browse all CVEs View on cve.org ↗