PT-2005-1424 · Safenet · Safenet Softremote Vpn Client

Roy Hills

Publicado

2005-02-10

Atualizado

2017-07-11

CVE-2005-0346

CVSS v2.0

2.1

Baixa

Vetor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions SafeNet SoftRemote VPN Client (affected versions not specified)

Description The issue concerns the storage of sensitive information in memory. Specifically, the VPN password, also known as the pre-shared key, is stored in cleartext in the memory of the IreIKE.exe process. This allows local users who have access to that process to obtain sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2005-0346

Produtos afetados

Safenet Softremote Vpn Client

PT-2005-1424 · Safenet · Safenet Softremote Vpn Client

CVE-2005-0346

Identificadores relacionados

Produtos afetados

Referências · 5