WellinTech KingView 6.5.3 and earlier uses a weak password-hashing algorithm, which makes it easier for local users to discover credentials by reading an unspecified file.
References
Link | Resource |
---|---|
http://www.us-cert.gov/control_systems/pdf/ICSA-12-283-02.pdf | US Government Resource |
http://www.wellintech.com/index.php/news/33-patch-for-kingview653 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2012-10-10 11:55
Updated : 2013-01-29 21:00
NVD link : CVE-2012-4899
Mitre link : CVE-2012-4899
JSON object : View
CWE
CWE-310
Cryptographic Issues
Products Affected
wellintech
- kingview