CVE-2005-3856

Sažetak

The Popular URL capability (popularurls.cpp) in Krusader 1.60.0 and 1.70.0-beta1 saves passwords in cleartext in the krusaderrc file when the user enters URLs containing passwords in the panel URL field, which might allow attackers to access other sites.

Reference

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336169
http://www.krusader.org/phpBB/viewtopic.php?t=1367
http://www.krusader.org/phpBB/viewtopic.php?t=1368

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

05-09-2008 - 20:55

Objavljeno

27-11-2005 - 20:03