Vulnerability CVE-1999-1246

Vulnerability Name:

CVE-1999-1246 (CCN-2068)

Assigned:

1999-04-10

Published:

1999-04-10

Updated:

2017-10-10

Summary:

Direct Mailer feature in Microsoft Site Server 3.0 saves user domain names and passwords in plaintext in the TMLBQueue network share, which has insecure default permissions, allowing remote attackers to read the passwords and gain privileges.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-1999-1246

Source: MSKB
Type: Patch, Vendor Advisory
Q229972

Source: CCN
Type: OSVDB ID: 11063
Microsoft Site Server Direct Mailer TMLBQueue Share Information Disclosure

Source: XF
Type: UNKNOWN
siteserver-directmail-passwords(2068)

Source: XF
Type: UNKNOWN
siteserver-directmail-passwords(2068)

Source: CCN
Type: Microsoft Knowledge Base Article 229972
Direct Mailer User Password Is Saved to Text File on Public Share

Vulnerable Configuration:

Configuration 1:

cpe:/a:microsoft:site_server:3.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:microsoft:site_server:-:*:*:*:*:*:*:*

Denotes that component is vulnerable

BACK