PT-2007-6757 · Globe7 · Globe7 Soft Phone Client

Published

2007-11-01

Updated

2017-07-29

CVE-2007-5790

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Globe7 soft phone client version 7.3

Description The issue concerns the use of weak cryptography in the Globe7 soft phone client, specifically a reversed sequence of binary values for password storage. This could potentially allow local users to obtain sensitive information.

Recommendations For Globe7 soft phone client version 7.3, consider updating the password storage mechanism to use stronger cryptography to mitigate the risk of sensitive information disclosure.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310

Related Identifiers

CVE-2007-5790

Affected Products

Globe7 Soft Phone Client

PT-2007-6757 · Globe7 · Globe7 Soft Phone Client

CVE-2007-5790

Weakness Enumeration

Related Identifiers

Affected Products

References · 5