exploitDog

CVE-2005-4412

Опубликовано: 20 дек. 2005

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI while asterisks are used to visually obfuscate the password, which allows attackers with access to the session to obtain the password by using a tool to directly access the field.

Ссылки

http://securitytracker.com/id?1015372
Exploit
http://support.citrix.com/article/CTX108108
Exploit
Vendor Advisory
http://securitytracker.com/id?1015372
Exploit
http://support.citrix.com/article/CTX108108
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:citrix:program_neighborhood_client:*:*:*:*:*:*:*:*

Версия до 9.1 (включая)

EPSS

Процентиль: 25%

0.00086

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-4rx4-97jg-645p

github

почти 4 года назад

Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI while asterisks are used to visually obfuscate the password, which allows attackers with access to the session to obtain the password by using a tool to directly access the field.

EPSS

Процентиль: 25%

0.00086

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other