ID CVE-2005-0844Type cveReporter NVDModified 2017-07-10T21:32:26
Description
Nortel VPN client 5.01 stores the cleartext password in the memory of the Extranet.exe process, which could allow local users to obtain sensitive information.
{"id": "CVE-2005-0844", "bulletinFamily": "NVD", "title": "CVE-2005-0844", "description": "Nortel VPN client 5.01 stores the cleartext password in the memory of the Extranet.exe process, which could allow local users to obtain sensitive information.", "published": "2005-05-02T00:00:00", "modified": "2017-07-10T21:32:26", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0844", "reporter": "NVD", "references": ["http://www.nta-monitor.com/news/vpn-flaws/nortel/nortel-client/", "http://securitytracker.com/id?1013512", "http://marc.info/?l=bugtraq&m=111151589203707&w=2", "https://exchange.xforce.ibmcloud.com/vulnerabilities/19791"], "cvelist": ["CVE-2005-0844"], "type": "cve", "lastseen": "2017-07-11T11:14:50", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/h:nortel:contivity:5.01"], "cvelist": ["CVE-2005-0844"], "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Nortel VPN client 5.01 stores the cleartext password in the memory of the Extranet.exe process, which could allow local users to obtain sensitive information.", "edition": 1, "hash": "c9d765da1705ebf18c3b6f9e0fb24b788555258c4d815d9ff40c6a376b576382", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "44f3f972f1219e5a5130d74f050ce136", "key": "published"}, {"hash": "b805128c2cc9566e0a0e28ccb3f4d1b7", "key": "href"}, {"hash": "01e293f5a8f4114ce3229da4bae79cfe", "key": "title"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "d1a79f369db7e07836e8ba85ec939e71", "key": "references"}, {"hash": "ce676b5f91560c940d9419007f6b60f3", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "15f51209e17b9160b089a3debc57e1dd", "key": "cvelist"}, {"hash": "fff58a4cf9625a3024f165a5c27c2009", "key": "cpe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "292f2e293571b0e70e3182b615982dad", "key": "cvss"}, {"hash": "fbc75c5189a8331e027c198e441b8282", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0844", "id": "CVE-2005-0844", "lastseen": "2016-09-03T05:14:32", "modified": "2011-01-06T00:00:00", "objectVersion": "1.2", "published": "2005-05-02T00:00:00", "references": ["http://marc.theaimsgroup.com/?l=bugtraq&m=111151589203707&w=2", "http://www.nta-monitor.com/news/vpn-flaws/nortel/nortel-client/", "http://securitytracker.com/id?1013512", "http://xforce.iss.net/xforce/xfdb/19791"], "reporter": "NVD", "scanner": [], "title": "CVE-2005-0844", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T05:14:32"}, {"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/h:nortel:contivity:5.01"], "cvelist": ["CVE-2005-0844"], "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Nortel VPN client 5.01 stores the cleartext password in the memory of the Extranet.exe process, which could allow local users to obtain sensitive information.", "edition": 2, "enchantments": {}, "hash": "d8b5de85c32694f83745a7fe087c415817807325b4e1cb7220d0cf53fef98bd5", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "44f3f972f1219e5a5130d74f050ce136", "key": "published"}, {"hash": "b805128c2cc9566e0a0e28ccb3f4d1b7", "key": "href"}, {"hash": "01e293f5a8f4114ce3229da4bae79cfe", "key": "title"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "ce676b5f91560c940d9419007f6b60f3", "key": "description"}, {"hash": "3bef5015b1f5e5419d62b1ceaf823ac2", "key": "references"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "15f51209e17b9160b089a3debc57e1dd", "key": "cvelist"}, {"hash": "fff58a4cf9625a3024f165a5c27c2009", "key": "cpe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d069c6a6369784d544fc4d902ae59f35", "key": "modified"}, {"hash": "292f2e293571b0e70e3182b615982dad", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0844", "id": "CVE-2005-0844", "lastseen": "2017-04-18T15:51:00", "modified": "2016-10-17T23:15:07", "objectVersion": "1.2", "published": "2005-05-02T00:00:00", "references": ["http://www.nta-monitor.com/news/vpn-flaws/nortel/nortel-client/", "http://securitytracker.com/id?1013512", "http://xforce.iss.net/xforce/xfdb/19791", "http://marc.info/?l=bugtraq&m=111151589203707&w=2"], "reporter": "NVD", "scanner": [], "title": "CVE-2005-0844", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 2, "lastseen": "2017-04-18T15:51:00"}], "edition": 3, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "fff58a4cf9625a3024f165a5c27c2009"}, {"key": "cvelist", "hash": "15f51209e17b9160b089a3debc57e1dd"}, {"key": "cvss", "hash": "292f2e293571b0e70e3182b615982dad"}, {"key": "description", "hash": "ce676b5f91560c940d9419007f6b60f3"}, {"key": "href", "hash": "b805128c2cc9566e0a0e28ccb3f4d1b7"}, {"key": "modified", "hash": "e3b08e9f8d617c60c75a3629a0df21b0"}, {"key": "published", "hash": "44f3f972f1219e5a5130d74f050ce136"}, {"key": "references", "hash": "35f6ad781ec680ca801ead70679a5c5f"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "01e293f5a8f4114ce3229da4bae79cfe"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "c6cbe3ea9c3241eb670dd4fac51de35e73601e03ec4a0bd068d1024ce85aadd5", "viewCount": 0, "enchantments": {"score": {"value": 2.1, "vector": "NONE", "modified": "2017-07-11T11:14:50"}, "dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:14994"]}], "modified": "2017-07-11T11:14:50"}, "vulnersScore": 2.1}, "objectVersion": "1.3", "cpe": ["cpe:/h:nortel:contivity:5.01"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": []}
{"osvdb": [{"lastseen": "2017-04-28T13:20:11", "bulletinFamily": "software", "description": "# No description provided by the source\n\n## References:\nVendor URL: http://www.nortel.com/\n[Vendor Specific Advisory URL](http://www116.nortelnetworks.com/pub/repository/CLARIFY/DOCUMENT/018723-01.pdf)\nSecurity Tracker: 1013512\nOther Advisory URL: http://www.nta-monitor.com/news/vpn-flaws/nortel/nortel-client/\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-03/0373.html\n[CVE-2005-0844](https://vulners.com/cve/CVE-2005-0844)\n", "modified": "2005-03-22T20:11:00", "published": "2005-03-22T20:11:00", "href": "https://vulners.com/osvdb/OSVDB:14994", "id": "OSVDB:14994", "title": "Nortel Contivity VPN Client Local Password Disclosure", "type": "osvdb", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
