63 matches found
CVE-2008-3901
Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this...
Design/Logic Flaw
Secu Star DriveCrypt Plus Pack 3.9 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3895
LILO 22.6.1 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3894
CVE-2008-3894 : IBM/Lenovo firmware 7CETB5WW 2.05 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear the buffer after use, allowing local users to read sensitive information from physical memory. The root cause is improper handling of the pre-boot password in ...
CVE-2008-3898
CVE-2008-3898 affects Secu Star DriveCrypt Plus Pack 3.9. Local attackers can read pre-boot authentication passwords stored in the BIOS keyboard buffer because the buffer is not cleared before/after use, enabling partial disclosure of sensitive data via memory locations associated with that buffe...
CVE-2008-3893
Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3896
CVE-2008-3896 affects Grub Legacy 0.97 and earlier, where pre-boot authentication passwords are stored in the BIOS Keyboard buffer and not cleared before/after use, enabling local users to read sensitive information from memory. Impact is partial confidentiality ; no exploitation details are prov...
CVE-2008-3901
The CVE-2008-3901 entry concerns Software suspend 2 (versions 2-2.2.1) used with Linux kernel 2.6.16, where pre-boot authentication passwords are stored in the BIOS Keyboard buffer and the buffer is not cleared after use. This allows local attackers to read sensitive data from physical memory loc...
CVE-2008-3893
CVE-2008-3893 affects Microsoft BitLocker in Windows Vista prior to SP1. The issue arises because pre-boot authentication passwords are stored in the BIOS keyboard buffer and the buffer is not cleared during boot, allowing local users to read memory locations and potentially recover sensitive inf...
CVE-2008-3896
Grub Legacy 0.97 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3894
IBM Lenovo firmware 7CETB5WW 2.05 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3895
LILO 22.6.1 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3896
Grub Legacy 0.97 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3899
TrueCrypt 5.0 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer. NOTE: the researcher mentions a...
CVE-2008-3901
Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this...
CVE-2008-3900
Intel firmware PE94510M.86A.0050.2007.0710.1559 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3897
The vulnerability CVE-2008-3897 affects DiskCryptor 0.2.6 on Windows. The root cause is that pre-boot authentication passwords are stored in the BIOS keyboard buffer and the buffer is not cleared before or after use, allowing local users to read sensitive information from memory. Impact is partia...
CVE-2008-3895
CVE-2008-3895 affects the LILO boot loader (22.6.1 and earlier). The vulnerability arises because pre-boot authentication passwords are stored in the BIOS Keyboard buffer and this buffer is not cleared before/after use, allowing local users to read the physical memory locations and recover sensit...
CVE-2008-3897
DiskCryptor 0.2.6 on Windows stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer...
CVE-2008-3900
The CVE-2008-3900 entry concerns Intel firmware PE94510M.86A.0050.2007.0710.1559 where pre-boot authentication passwords are stored in the BIOS keyboard buffer and the buffer is not cleared after use. This allows local users to read the raw memory locations associated with the buffer to obtain se...