VYPR

Homebet

by Amtote

CVEs (2)

  • CVE-2001-1528Dec 31, 2001
    risk 0.04cvss epss 0.08

    AmTote International homebet program returns different error messages when invalid account numbers and PIN codes are provided, which allows remote attackers to determine the existence of valid account numbers via a brute force attack.

  • CVE-2001-1170Sep 29, 2001
    risk 0.04cvss epss 0.08

    AmTote International homebet program stores the homebet.log file in the homebet/ virtual directory, which allows remote attackers to steal account and PIN numbers.