exploitDog

CVE-2001-0984

Опубликовано: 13 сент. 2001

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the clipboard and minimizes Password Safe with the "Clear the password when minimized" and "Lock password database on minimize and prompt on restore" options enabled, which could allow an attacker with access to the memory (e.g. an administrator) to read the passwords.

Ссылки

http://www.securityfocus.com/archive/1/213931
Vendor Advisory
http://www.securityfocus.com/bid/3337
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7123
http://www.securityfocus.com/archive/1/213931
Vendor Advisory
http://www.securityfocus.com/bid/3337
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7123

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:counterpane:password_safe:1.7.1:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00074

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-4pjj-pmhg-p6q3

github

больше 3 лет назад

Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the clipboard and minimizes Password Safe with the "Clear the password when minimized" and "Lock password database on minimize and prompt on restore" options enabled, which could allow an attacker with access to the memory (e.g. an administrator) to read the passwords.

EPSS

Процентиль: 23%

0.00074

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other