CVE-2007-2883
Published May 30, 2007
Last updated 6 years ago
Overview
- Description
- Credant Mobile Guardian Shield for Windows 5.2.1.105 and earlier stores account names and passwords in plaintext in memory, which allows local users to obtain sensitive information by (1) reading the paging file or (2) dumping and searching the memory image. NOTE: This issue crosses privilege boundaries because the product is intended to protect the data on a stolen computer.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Evaluator
- Comment
- -
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:credant:credant_mobile_guardian_shield_-_windows:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2840A920-3D9E-41F0-93FE-69ABCAD8D67F",
"versionEndIncluding": "5.2.1.105"
}
],
"operator": "OR"
}
]
}
]