CVE-1999-1470

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Jun 24, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1470 is a vulnerability affecting Eastman Work Management version 3.21. The issue lies in the storage of cleartext passwords in the COMMON and LOCATOR registry keys. This flaw allows local users to gain elevated privileges by accessing these passwords, potentially leading to unauthorized system modifications or data theft. The vulnerability poses a significant risk, as cleartext passwords are easily readable and can be exploited with minimal effort. To mitigate this issue, system administrators should immediately update to a patched version of Eastman Work Management or implement measures to secure the affected registry keys.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database