Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1104

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-1999-1104
Last Modified 05 Sep 2008 04:18:43
Published 31 Dec 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1104

Summary

Windows 95 uses weak encryption for the password list (.pwl) file used when password caching is enabled, which allows local users to gain privileges by decrypting the passwords.

Vulnerable Systems

Operating System

  • Microsoft Windows 95


References

NTBUGTRAQ - 19980121 How to recover private keys for various Microsoft products

BUGTRAQ - 19980120 How to recover private keys for various Microsoft products

BUGTRAQ - 19951205 Cracked: WINDOWS.PWL

XF - win95-nbsmbpwl(71)

MSKB - Q140557


Last Updated: 27 May 2016 10:35:16