PT-2005-4874 · Insyde · Insyde Bios

Published

2005-12-11

Updated

2018-10-19

CVE-2005-4175

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Insyde BIOS version V190

Description The issue allows local administrators or users to read the BIOS password directly from physical memory because the keyboard buffer is not cleared after reading the BIOS password during system startup.

Recommendations For Insyde BIOS version V190, consider clearing the keyboard buffer manually after entering the BIOS password as a temporary workaround until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-4175

Affected Products

Insyde Bios

PT-2005-4874 · Insyde · Insyde Bios

CVE-2005-4175

Related Identifiers

Affected Products

References · 7