VYPR
Critical severity9.8NVD Advisory· Published Dec 31, 2001· Updated Jun 16, 2026

CVE-2001-1481

CVE-2001-1481

Description

Xitami 2.4 through 2.5 b4 stores the Administrator password in plaintext in the default.aut file, whose default permissions are world-readable, which allows remote attackers to gain privileges.

Affected products

3
  • Xitami/Xitami3 versions
    cpe:2.3:a:xitami:xitami:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:xitami:xitami:*:*:*:*:*:*:*:*range: >=2.4,<=2.5
    • cpe:2.3:a:xitami:xitami:2.5:beta4:*:*:*:*:*:*
    • (no CPE)range: 2.4 - 2.5b4

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.