Vendor

Excite

Products

CVEs

Across products

Status

Private

Products

CVE	CVSS	EPSS	Published	Description
CVE-1999-1072	—	0.00	Nov 30, 1998	Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi.
CVE-1999-1071	—	0.00	Nov 30, 1998	Excite for Web Servers (EWS) 1.1 installs the Architext.conf authentication file with world-writeable permissions, which allows local users to gain access to Excite accounts by modifying the file.
CVE-1999-1073	—	0.00	Nov 30, 1998	Excite for Web Servers (EWS) 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack.
CVE-1999-0279	—	0.01	Jan 1, 1998	Excite for Web Servers (EWS) allows remote command execution via shell metacharacters.

CVE-1999-1072Nov 30, 1998
risk 0.00cvss —epss 0.00
Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi.
CVE-1999-1071Nov 30, 1998
risk 0.00cvss —epss 0.00
Excite for Web Servers (EWS) 1.1 installs the Architext.conf authentication file with world-writeable permissions, which allows local users to gain access to Excite accounts by modifying the file.
CVE-1999-1073Nov 30, 1998
risk 0.00cvss —epss 0.00
Excite for Web Servers (EWS) 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack.
CVE-1999-0279Jan 1, 1998
risk 0.00cvss —epss 0.01
Excite for Web Servers (EWS) allows remote command execution via shell metacharacters.