CVE-2000-0777

{"id": "CVE-2000-0777", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2000-10-20T04:00:00.000", "references": [{"url": "http://www.securityfocus.com/bid/1615", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-061", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The password protection feature of Microsoft Money can store the password in plaintext, which allows attackers with physical access to the system to obtain the password, aka the \"Money Password\" vulnerability."}], "lastModified": "2018-10-12T21:29:46.407", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:money:2000:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04303051-3FE6-45B0-B721-5331536A5D68"}, {"criteria": "cpe:2.3:a:microsoft:money:2001:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5672DA19-6EAB-48B8-96CB-8AF426BD8B33"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}