Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5470

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2007-5470
Last Modified 15 Nov 2008 02:01:05
Published 15 Oct 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-5470

Summary

Microsoft Expression Media stores the catalog password in cleartext in the catalog IVC file, which allows local users to obtain sensitive information and gain access to the catalog by reading the IVC file.

Vulnerable Systems

Application

  • Microsoft Expression Media


References

MSKB - 942109

SECUNIA - 27144

OSVDB - 38486

BID - 25996


Last Updated: 27 May 2016 10:46:10