Lucene search
Japan Vulnerability NotesJVN:99175647HistoryMay 17, 2011 - 12:00 a.m.
JVN#99175647: Virus Buster 2009 key input encryption function vulnerability
2011-05-1700:00:00
Japan Vulnerability Notes
jvn.jp
14
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
16.6%
The key input encryption function in Virus Buster 2009 contains a vulnerability where a portion of password that is entered in the web browser is not properly encrypted.
Impact
When input information is stolen by a key logger, portions of the information may be leaked in plaintext.
Solution
Update the Software
Update to Virus Buster 2010 or 2011 according to the information provided by the developer.
Products Affected
- Virus Buster 2009
According to the developer, Virus Buster 2010 and later are not affected.
Related
cvelist
cvelist
CVE-2011-1327
2011-05-20 22:00:00
cve
cve
CVE-2011-1327
2011-05-20 22:55:03
nvd
nvd
CVE-2011-1327
2011-05-20 22:55:03
prion
prion
Code injection
2011-05-20 22:55:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
16.6%
Related for JVN:99175647