PT-2005-2117 · Runtime · Getdataback For Ntfs

Published

2005-04-13

Updated

2017-07-11

CVE-2005-1098

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions GetDataBack for NTFS version 2.31

Description The issue allows local users to obtain sensitive information because the software stores the username and license key in plaintext in the 'Name' value in the 'License' registry key.

Recommendations For GetDataBack for NTFS version 2.31, consider restricting access to the 'License' registry key to minimize the risk of exploitation. As a temporary workaround, avoid using the username and license key in plaintext until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1098

Affected Products

Getdataback For Ntfs

PT-2005-2117 · Runtime · Getdataback For Ntfs

CVE-2005-1098

Related Identifiers

Affected Products

References · 5