Lucene search
MitreCVE-2008-6191HistoryFeb 19, 2009 - 6:30 p.m.
CVE-2008-6191
2009-02-1918:30:00
CWE-255
mitre
web.nvd.nist.gov
21
cve-2008-6191
intrinsic swimage encore
conductor.exe
hardcoded password
local users
.bin files
privilege boundaries
nvd
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
5.3%
Conductor.exe in Intrinsic Swimage Encore before 5.0.1.21 contains a hardcoded password, which might allow local users to decrypt certain .bin files. NOTE: it is not clear whether this issue crosses privilege boundaries.
Affected configurations
Node
intrinsicswimage_encoreRange≤5.x
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intrinsic | swimage_encore | * | cpe:2.3:a:intrinsic:swimage_encore:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2008-6191
2009-02-19 18:30:00
prion
prion
Hardcoded credentials
2009-02-19 18:30:00
cvelist
cvelist
CVE-2008-6191
2009-02-19 18:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
5.3%
Related for CVE-2008-6191