CVE-2001-0597

Name of the Vulnerable Software and Affected Versions: Zetetic Secure Tool for Recalling Important Passwords (STRIP) versions 0.5 and earlier

Description: The issue allows a local attacker to recover passwords via a brute force attack due to the use of SysRandom, which is seeded by TimeGetTicks, and an implementation flaw that reduces the password 'search space'.

Recommendations: For versions 0.5 and earlier, consider implementing additional security measures to protect against brute force attacks, such as limiting the number of login attempts or using a more secure random number generator. At the moment, there is no information about a newer version that contains a fix for this vulnerability.