Vulnerability Description
Microsoft Baseline Security Analyzer (MBSA) 1.0 stores security scans in a known location C:\Documents and Settings\username\SecurityScans in plaintext, which could allow remote attackers to obtain sensitive information about the system via malicious active content such as ActiveX controls or Java.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Baseline Security Analyzer | 1.0 |
References
- http://online.securityfocus.com/archive/1/269408
- http://www.securityfocus.com/bid/4594Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8947
- http://online.securityfocus.com/archive/1/269408
- http://www.securityfocus.com/bid/4594Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8947
FAQ
What is CVE-2002-1762?
CVE-2002-1762 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Microsoft Baseline Security Analyzer (MBSA) 1.0 stores security scans in a known location C:\Documents and Settings\username\SecurityScans in plaintext, which could allow remote attackers to obtain se...
How severe is CVE-2002-1762?
CVE-2002-1762 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1762?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Baseline Security Analyzer.