PT-2005-2116 · Rebrand · Rebrand P2P Share Spy

Published

2005-04-13

Updated

2008-09-05

CVE-2005-1097

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Rebrand P2P Share Spy version 2.2

Description The issue allows local users to gain privileges because it stores the user password in plaintext in the txtPassword value in the registry.

Recommendations For version 2.2, consider removing or securing the txtPassword value from the registry to prevent unauthorized access until a proper fix is available. As a temporary workaround, restrict local access to the system to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1097

Affected Products

Rebrand P2P Share Spy

PT-2005-2116 · Rebrand · Rebrand P2P Share Spy

CVE-2005-1097

Related Identifiers

Affected Products

References · 3