PT-2008-2285 · Novell · Novell Challenge Response Client

Published

2008-02-08

Updated

2011-03-08

CVE-2008-0663

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Novell Challenge Response Client (LCM) version 2.7.5 and earlier

Description The issue allows users with physical access to a locked system to obtain the contents of the clipboard by pasting the contents into the Challenge Question field.

Recommendations For Novell Challenge Response Client (LCM) version 2.7.5 and earlier, consider restricting physical access to locked systems to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2008-0663

Affected Products

Novell Challenge Response Client

PT-2008-2285 · Novell · Novell Challenge Response Client

CVE-2008-0663

Related Identifiers

Affected Products

References · 6