← CVECheck
HomeVulnerabilities

CVE-2001-1481 — CRITICAL severity vulnerability (Xitami 2.4 through 2.5 b4 stores the Administrator password)

Xitami 2.4 through 2.5 b4 stores the Administrator password in plaintext in the default.aut file, whose default permissions are world-readable, which allows remote attackers to gain privileges.

CVE IDCVE-2001-1481
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-312
StatusModified
Published2001-12-31
Last modified2026-04-16
DescriptionXitami 2.4 through 2.5 b4 stores the Administrator password in plaintext in the default.aut file, whose default permissions are world-readable, which allows remote attackers to gain privileges.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →