Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3893

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2008-3893
Last Modified 05 Sep 2008 12:00:00
Published 03 Sep 2008 10:12:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3893

Summary

Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer.

Vulnerable Systems

Operating System

  • Microsoft Windows Vista


References

MISC - http://www.ivizsecurity.com/security-advisory-iviz-sr-0801.html

SECUNIA - 31619


Last Updated: 27 May 2016 10:48:20