CVE-2005-0844

Опубликовано: 02 мая 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Nortel VPN client 5.01 stores the cleartext password in the memory of the Extranet.exe process, which could allow local users to obtain sensitive information.

Ссылки

http://marc.info/?l=bugtraq&m=111151589203707&w=2
http://securitytracker.com/id?1013512
Exploit
Vendor Advisory
http://www.nta-monitor.com/news/vpn-flaws/nortel/nortel-client/
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19791
http://marc.info/?l=bugtraq&m=111151589203707&w=2
http://securitytracker.com/id?1013512
Exploit
Vendor Advisory
http://www.nta-monitor.com/news/vpn-flaws/nortel/nortel-client/
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19791

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:nortel:contivity:5.01:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00108

Низкий

4.6 Medium

CVSS2

Дефекты

CWE-310

Связанные уязвимости

GHSA-q4m9-8qj6-qg26

github

почти 4 года назад