Lucene search

[email protected]CVE-2001-1165

HistoryApr 01, 2002 - 5:00 a.m.

CVE-2001-1165

2002-04-0105:00:00

[email protected]

web.nvd.nist.gov

cve-2001-1165

intego fileguard 4.0

weak encryption

user information

passwords

local users

privileges

disengage tool

nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

Intego FileGuard 4.0 uses weak encryption to store user information and passwords, which allows local users to gain privileges by decrypting the information, e.g., with the Disengage tool.

Affected configurations

NVD

Node

integodiskguardMatch2.0

integofileguardMatch4.0

CPENameOperatorVersion
intego:diskguardintego diskguardeq2.0
intego:fileguardintego fileguardeq4.0

CPE	Name	Operator	Version
intego:diskguard	intego diskguard	eq	2.0
intego:fileguard	intego fileguard	eq	4.0

References

www.iss.net/security_center/static/7018.php

www.securemac.com/fileguard.php#disengage

www.securityfocus.com/bid/3213

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2001-1165

nvd1 cvelist1