CVE-2005-0288

Description

The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change other users' passwords.

CVSS Version 2.0

nvd
CVE ID: CVE-2005-0288
Base Score: 3.6
Base Severity: LOW
Vector String:AV:L/AC:L/Au:N/C:N/I:P/A:P

Refrence: NVD

Description​

Description