PT-2005-1424 · Safenet · Safenet Softremote Vpn Client

Roy Hills

Published

2005-02-10

Updated

2017-07-11

CVE-2005-0346

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions SafeNet SoftRemote VPN Client (affected versions not specified)

Description The issue concerns the storage of sensitive information in memory. Specifically, the VPN password, also known as the pre-shared key, is stored in cleartext in the memory of the IreIKE.exe process. This allows local users who have access to that process to obtain sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0346

Affected Products

Safenet Softremote Vpn Client

PT-2005-1424 · Safenet · Safenet Softremote Vpn Client

CVE-2005-0346

Related Identifiers

Affected Products

References · 5