| ID |
CVE-2009-0320
|
| Sažetak |
Microsoft Windows XP, Server 2003 and 2008, and Vista exposes I/O activity measurements of all processes, which allows local users to obtain sensitive information, as demonstrated by reading the I/O Other Bytes column in Task Manager (aka taskmgr.exe) to estimate the number of characters that a different user entered at a runas.exe password prompt, related to a "benchmarking attack." |
| Reference |
|
| CVSS |
| Base: | 4.0 |
| Impact: | 6.9 |
| Exploitability: | 1.9 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
HIGH |
NONE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| COMPLETE |
NONE |
NONE |
|
| CVSS vektor |
AV:L/AC:H/Au:N/C:C/I:N/A:N |
| Zadnje važnije ažuriranje |
26-02-2019 - 14:04 |
| Objavljeno |
28-01-2009 - 18:30 |
