Vulnerability Details : CVE-2000-1173
Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sniff network traffic and obtain this sensitive information.
Exploit prediction scoring system (EPSS) score for CVE-2000-1173
Probability of exploitation activity in the next 30 days: 0.34%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 68 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2000-1173
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2000-1173
-
http://www.securityfocus.com/bid/1977
Exploit;Vendor Advisory
-
http://archives.neohapsis.com/archives/bugtraq/2000-11/0323.html
Exploit;Vendor Advisory
Products affected by CVE-2000-1173
- cpe:2.3:a:microsys:cyberpatrol:4.04.003:*:*:*:*:*:*:*
- cpe:2.3:a:microsys:cyberpatrol:4.04.005:*:*:*:*:*:*:*