Lucene search
MitreCVE-2008-3893HistorySep 03, 2008 - 2:12 p.m.
CVE-2008-3893
2008-09-0314:12:00
CWE-200
mitre
web.nvd.nist.gov
24
microsoft
bitlocker
windows vista
sp1
vulnerability
bios
pre-boot authentication
sensitive information
memory locations
nvd
CVSS2
1.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
AI Score
5.9
Confidence
Low
EPSS
0.001
Percentile
35.6%
Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer.
Affected configurations
Node
microsoftwindows_vistaenterprise
ORmicrosoftwindows_vistaultimate
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_vista | * | cpe:2.3:o:microsoft:windows_vista:*:*:enterprise:*:*:*:*:* |
| microsoft | windows_vista | * | cpe:2.3:o:microsoft:windows_vista:*:*:ultimate:*:*:*:*:* |
Related
nvd
nvd
CVE-2008-3893
2008-09-03 14:12:00
prion
prion
Buffer overflow
2008-09-03 14:12:00
cvelist
cvelist
CVE-2008-3893
2008-09-03 14:00:00
CVSS2
1.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
AI Score
5.9
Confidence
Low
EPSS
0.001
Percentile
35.6%
Related for CVE-2008-3893