← Back to CVEs
CVE-2002-1676
N/ADescription
BindView NetInventory 1.0, when used with NetRC 1.0, allows local users to read sensitive information (passwords) by deleting the HOSTCFG._NI file and forcing an audit, which rewrites the HOSTCFG._NI to HOSTCFG.INI and stores the passwords in cleartext until the audit is complete.
CVE Details
CVSS v3.1 ScoreN/A
Published12/31/2002
Last Modified4/16/2026
Sourcenvd
Honeypot Sightings0
Affected Products
bindview:netinventorybindview:netrc
References
http://online.securityfocus.com/archive/1/252293(cve@mitre.org)
http://online.securityfocus.com/archive/1/256056(cve@mitre.org)
http://www.securityfocus.com/bid/3957(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7992(cve@mitre.org)
http://online.securityfocus.com/archive/1/252293(af854a3a-2127-422b-91ae-364da2661108)
http://online.securityfocus.com/archive/1/256056(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/3957(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7992(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.