Description
Respondus 1.1.2 for WebCT uses weak encryption to remember usernames and passwords, which allows local users who can read the WEBCT.SVR file to decrypt the passwords and gain additional privileges.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Desmond Irvine · textlocalmultiple
https://www.exploit-db.com/exploits/21078
References (1)
Core 1
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=99859557930285&w=2
Scores
EPSS
0.0020
EPSS Percentile
42.1%
Details
Status
published
Products (1)
webct/respondus
1.1.2
Published
Aug 31, 2001
Tracked Since
Feb 18, 2026