Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Excite for Web Servers (EWS)权限提升漏洞
Vulnerability Description
Excite for Web Servers (EWS) 1.1存在漏洞。本地用户可以借助从全域可读Architext.conf认证文件中获取加密密码以及重放位于到AT-generated.cgi or AT-admin.cgi HTTP请求的加密密码,获取权限。
CVSS Information
N/A
Vulnerability Type
N/A