Lucene search

[email protected]CVE-2007-1505

HistoryMar 19, 2007 - 10:19 p.m.

CVE-2007-1505

2007-03-1922:19:00

[email protected]

web.nvd.nist.gov

cve-2007-1505

fujitsu

fence-pro

systemwalker

desktop encryption

vulnerability

local users

sensitive information

self-decoding

password

nvd

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Fujitsu FENCE-Pro before V5L01, and Systemwalker Desktop Encryption V12.0L10, V12.0L10A, V12.0L10B, V12.0L20 and V13.0.0 allows local users to obtain sensitive information by extracting the decoding password from certain “self-decoding” file types.

Affected configurations

NVD

Node

fujitsufenceMatch2pro

fujitsufenceMatch3pro

fujitsufenceMatch4pro

fujitsusystemwalker_desktop_encryptionMatchv12.0l10

fujitsusystemwalker_desktop_encryptionMatchv12.0l10a

fujitsusystemwalker_desktop_encryptionMatchv12.0l10b

fujitsusystemwalker_desktop_encryptionMatchv12.0l20

fujitsusystemwalker_desktop_encryptionMatchv13.0.0

CPENameOperatorVersion
fujitsu:fencefujitsu fenceeq2
fujitsu:fencefujitsu fenceeq3
fujitsu:fencefujitsu fenceeq4
fujitsu:systemwalker_desktop_encryptionfujitsu systemwalker desktop encryptioneqv12.0l10
fujitsu:systemwalker_desktop_encryptionfujitsu systemwalker desktop encryptioneqv12.0l10a
fujitsu:systemwalker_desktop_encryptionfujitsu systemwalker desktop encryptioneqv12.0l10b
fujitsu:systemwalker_desktop_encryptionfujitsu systemwalker desktop encryptioneqv12.0l20
fujitsu:systemwalker_desktop_encryptionfujitsu systemwalker desktop encryptioneqv13.0.0

CPE	Name	Operator	Version
fujitsu:fence	fujitsu fence	eq	2
fujitsu:fence	fujitsu fence	eq	3
fujitsu:fence	fujitsu fence	eq	4
fujitsu:systemwalker_desktop_encryption	fujitsu systemwalker desktop encryption	eq	v12.0l10
fujitsu:systemwalker_desktop_encryption	fujitsu systemwalker desktop encryption	eq	v12.0l10a
fujitsu:systemwalker_desktop_encryption	fujitsu systemwalker desktop encryption	eq	v12.0l10b
fujitsu:systemwalker_desktop_encryption	fujitsu systemwalker desktop encryption	eq	v12.0l20
fujitsu:systemwalker_desktop_encryption	fujitsu systemwalker desktop encryption	eq	v13.0.0

References

jvn.jp/jp/JVN%2319795972/index.html

osvdb.org/34184

secunia.com/advisories/24537

secunia.com/advisories/24549

segroup.fujitsu.com/secure/products/fence/notice/alert20070316.html

software.fujitsu.com/jp/security/products-fujitsu/solution/systemwalker_dte_200701.html

www.securityfocus.com/bid/23001

exchange.xforce.ibmcloud.com/vulnerabilities/33029

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2007-1505

prion1 cvelist1 nvd1