CVE-2007-1505
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
5.1%
Fujitsu FENCE-Pro before V5L01, and Systemwalker Desktop Encryption V12.0L10, V12.0L10A, V12.0L10B, V12.0L20 and V13.0.0 allows local users to obtain sensitive information by extracting the decoding password from certain “self-decoding” file types.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fujitsu | fence | 2 | cpe:2.3:a:fujitsu:fence:2:*:pro:*:*:*:*:* |
| fujitsu | fence | 3 | cpe:2.3:a:fujitsu:fence:3:*:pro:*:*:*:*:* |
| fujitsu | fence | 4 | cpe:2.3:a:fujitsu:fence:4:*:pro:*:*:*:*:* |
| fujitsu | systemwalker_desktop_encryption | v12.0l10 | cpe:2.3:a:fujitsu:systemwalker_desktop_encryption:v12.0l10:*:*:*:*:*:*:* |
| fujitsu | systemwalker_desktop_encryption | v12.0l10a | cpe:2.3:a:fujitsu:systemwalker_desktop_encryption:v12.0l10a:*:*:*:*:*:*:* |
| fujitsu | systemwalker_desktop_encryption | v12.0l10b | cpe:2.3:a:fujitsu:systemwalker_desktop_encryption:v12.0l10b:*:*:*:*:*:*:* |
| fujitsu | systemwalker_desktop_encryption | v12.0l20 | cpe:2.3:a:fujitsu:systemwalker_desktop_encryption:v12.0l20:*:*:*:*:*:*:* |
| fujitsu | systemwalker_desktop_encryption | v13.0.0 | cpe:2.3:a:fujitsu:systemwalker_desktop_encryption:v13.0.0:*:*:*:*:*:*:* |
References
jvn.jp/jp/JVN%2319795972/index.html
osvdb.org/34184
secunia.com/advisories/24537
secunia.com/advisories/24549
segroup.fujitsu.com/secure/products/fence/notice/alert20070316.html
software.fujitsu.com/jp/security/products-fujitsu/solution/systemwalker_dte_200701.html
www.securityfocus.com/bid/23001
exchange.xforce.ibmcloud.com/vulnerabilities/33029
Related
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
5.1%