Weak Encryption in SawMill 5.0.21 Allows Password Decryption and Configuration Modification

Weak Encryption in SawMill 5.0.21 Allows Password Decryption and Configuration Modification

CVE-2000-0589 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SawMill 5.0.21 uses weak encryption to store passwords, which allows attackers to easily decrypt the password and modify the SawMill configuration.

Learn more about our Web Application Penetration Testing UK.