Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3775

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2008-3775
Last Modified 29 Jan 2009 01:54:24
Published 22 Aug 2008 12:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-3775

Summary

Folder Lock 5.9.5 and earlier uses weak encryption (ROT-25) for the password, which allows local administrators to obtain sensitive information by reading and decrypting the QualityControl\_pack registry value.

Vulnerable Systems

Application

  • Folder Lock 5.5.7

  • Folder Lock 5.6.3

  • Folder Lock 5.7.0

  • Folder Lock 5.7.2

  • Folder Lock 5.7.3

  • Folder Lock 5.7.5

  • Folder Lock 5.8.2

  • Folder Lock 5.9.0

  • Folder Lock 5.9.2

  • Folder Lock 5.9.5


References

XF - folderlock-packregistry-info-disclosure(44575)

BID - 30771

BUGTRAQ - 20080820 Folder Lock <= 5.9.5 Local Password Information Disclosure

SREASON - 4183

SECUNIA - 31559


Last Updated: 27 May 2016 10:48:18