CVE-2006-7163

{"id": "CVE-2006-7163", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": true, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-03-10T00:19:00.000", "references": [{"url": "http://www.securityfocus.com/bid/19983", "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "DreameeSoft Password Master 1.0 stores the database in an unencrypted format when the master password is set, which allows attackers with physical access to read the database contents via an unspecified authentication bypass. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information."}, {"lang": "es", "value": "DreameeSoft Password Master 1.0 almacena la Base de Datos en un formato sin encriptar cuando la contrase\u00f1a maestra est\u00e1 establecida, lo que permite a atacantes remotos con acceso f\u00edsico leer los contenidos de la Base de Datos evitando la autenticaci\u00f3n de una forma sin especificar. NOTA: la procedencia de esta informaci\u00f3n es desconocida; los detalles se obtienen a partir de la informaci\u00f3n de terceros."}], "lastModified": "2008-09-05T21:16:34.933", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:dreameesoft:password_master:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A12665D5-F5CD-4EB8-9B5F-820BDD1A38E3"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}