CVE-2011-5117

2012-08-24T10:36:00
ID CVE-2011-5117
Type cve
Reporter cve@mitre.org
Modified 2012-08-24T16:30:00

Description

Sophos SafeGuard Enterprise Device Encryption 5.x through 5.50.8.13, Sophos SafeGuard Easy Device Encryption Client 5.50.x, and Sophos Disk Encryption 5.50.x have a delay before removal of (1) out-of-date credentials and (2) invalid credentials, which allows physically proximate attackers to defeat the full-disk encryption feature by leveraging knowledge of these credentials.