PT-2002-2790 · Microsoft+1 · Windows+2
Published
2002-12-31
·
Updated
2024-02-08
·
CVE-2002-2070
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
SecureClean version 3 build 2.0
Description:
The issue concerns the failure to clear Windows alternate data streams attached to files on NTFS file systems, allowing attackers to recover sensitive information that was supposed to be deleted.
Recommendations:
For SecureClean version 3 build 2.0, consider manually clearing Windows alternate data streams on NTFS file systems after deletion, as the software does not perform this action.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ntfs
Secureclean
Windows