CVE-2008-3897

Name of the Vulnerable Software and Affected Versions DiskCryptor version 0.2.6

Description The issue allows local users to obtain sensitive information, specifically pre-boot authentication passwords, by reading physical memory locations associated with the BIOS Keyboard buffer. This is because the passwords are stored in this buffer and not cleared before and after use.

Recommendations For DiskCryptor version 0.2.6, consider clearing the BIOS Keyboard buffer after use to prevent sensitive information from being obtained. As a temporary workaround, restrict physical access to the system to minimize the risk of exploitation.