CVE-2007-0889

Name of the Vulnerable Software and Affected Versions: Kiwi CatTools versions prior to 3.2.0 beta

Description: The issue concerns the use of weak encryption, referred to as "reversible encoding", for sensitive data such as passwords, account names, and IP addresses stored in the kiwidb-cattools.kdb file. This could potentially allow local users to obtain sensitive information by decrypting the file. Additionally, it is noted that this issue could be exploited remotely if combined with a directory traversal vulnerability.

Recommendations: For versions prior to 3.2.0 beta, update to version 3.2.0 beta or later to resolve the issue.