Lucene search

[email protected]CVE-2005-1424

HistoryMay 03, 2005 - 4:00 a.m.

CVE-2005-1424

2005-05-0304:00:00

[email protected]

web.nvd.nist.gov

cve-2005-1424

information security

plaintext

sensitive data

gotext

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

StumbleInside GoText 1.01 stores sensitive username, mail address,and phone number information in plaintext in the GoText.bin file, which allows local users to obtain that information.

Affected configurations

NVD

Node

stumbleinsidegotextMatch1.01

CPENameOperatorVersion
stumbleinside:gotextstumbleinside gotexteq1.01

CPE	Name	Operator	Version
stumbleinside:gotext	stumbleinside gotext	eq	1.01

References

securitytracker.com/id?1013825

www.osvdb.org/14686

www.securityfocus.com/bid/13443

exchange.xforce.ibmcloud.com/vulnerabilities/20315

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2005-1424

cvelist1 nvd1