← CVECheck
HomeVulnerabilities

CVE-2001-1463 — HIGH severity vulnerability (The remote administration client for RhinoSoft Serv-U 3.0 se)

The remote administration client for RhinoSoft Serv-U 3.0 sends the user password in plaintext even when S/KEY One-Time Password (OTP) authentication is enabled, which allows remote attackers to sniff passwords.

CVE IDCVE-2001-1463
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWECWE-310
StatusModified
Published2001-11-19
Last modified2026-04-16
DescriptionThe remote administration client for RhinoSoft Serv-U 3.0 sends the user password in plaintext even when S/KEY One-Time Password (OTP) authentication is enabled, which allows remote attackers to sniff passwords.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →