Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0984

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-0984
Last Modified 05 Sep 2008 04:25:23
Published 13 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0984

Summary

Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the clipboard and minimizes Password Safe with the "Clear the password when minimized" and "Lock password database on minimize and promp on restore" options enabled, which could allow an attacker with access to the memory (e.g. an administrator) to read the passwords.

Vulnerable Systems

Application

  • Counterpane Password Safe 1.7.1


References

XF - counterpane-password-access(7123)

BID - 3337

BUGTRAQ - 20010913 leak of information in counterpane/Bruce Schneier's Password Safe program


Last Updated: 27 May 2016 10:36:28