PT-2007-6757 · Globe7 · Globe7 Soft Phone Client

Publicado

2007-11-01

Atualizado

2017-07-29

CVE-2007-5790

CVSS v2.0

2.1

Baixa

Vetor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Globe7 soft phone client version 7.3

Description The issue concerns the use of weak cryptography in the Globe7 soft phone client, specifically a reversed sequence of binary values for password storage. This could potentially allow local users to obtain sensitive information.

Recommendations For Globe7 soft phone client version 7.3, consider updating the password storage mechanism to use stronger cryptography to mitigate the risk of sensitive information disclosure.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-310

Identificadores relacionados

CVE-2007-5790

Produtos afetados

Globe7 Soft Phone Client

PT-2007-6757 · Globe7 · Globe7 Soft Phone Client

CVE-2007-5790

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5