Lucene search

[email protected]CVE-2005-1098

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-1098

2005-05-0204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-1098

getdataback

ntfs

plaintext

credentials

security vulnerability

6.9 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON

GetDataBack for NTFS 2.31 stores the username and license key in plaintext in the Name value in the License registry key, which may allow local users to obtain sensitive information.

CPENameOperatorVersion
runtime_software:getdataback_for_ntfsruntime software getdataback for ntfseq2.31

CPE	Name	Operator	Version
runtime_software:getdataback_for_ntfs	runtime software getdataback for ntfs	eq	2.31

References

securitytracker.com/id?1013644

www.osvdb.org/15210

exchange.xforce.ibmcloud.com/vulnerabilities/19967

6.9 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON