CVE-2008-3902

Name of the Vulnerable Software and Affected Versions HP firmware version 68DTT F.0D

Description The issue allows local users to obtain sensitive information by reading physical memory locations. This is due to the storage of pre-boot authentication passwords in the BIOS Keyboard buffer, which is not cleared after use.

Recommendations For HP firmware version 68DTT F.0D, consider clearing the BIOS Keyboard buffer after use to prevent sensitive information from being obtained. As a temporary workaround, restrict physical access to the device to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.