PT-2005-3138 · Capturix · Capturix Scanshare
Published
2005-07-11
·
Updated
2024-02-13
·
CVE-2005-2209
CVSS v2.0
1.9
Low
| Vector | AV:L/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Capturix ScanShare version 1.06 build 50
Description:
The issue concerns the storage of sensitive information, such as passwords, in cleartext within the capturixss cfg.ini file. This file is readable by local users, potentially exposing the stored sensitive information.
Recommendations:
For Capturix ScanShare version 1.06 build 50, consider restricting access to the capturixss cfg.ini file to minimize the risk of sensitive information exposure until a more secure method of storing passwords is implemented.
Exploit
Fix
Cleartext Storage of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Capturix Scanshare