CVE-2007-5470

Microsoft Expression Media stores the catalog password in cleartext in the catalog IVC file, which allows local users to obtain sensitive information and gain access to the catalog by reading the IVC file.
Configurations

Configuration 1 (hide)

cpe:2.3:a:microsoft:expression_media:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:37

Type Values Removed Values Added
References () http://osvdb.org/38486 - () http://osvdb.org/38486 -
References () http://secunia.com/advisories/27144 - Vendor Advisory () http://secunia.com/advisories/27144 - Vendor Advisory
References () http://support.microsoft.com/kb/942109 - () http://support.microsoft.com/kb/942109 -
References () http://www.securityfocus.com/bid/25996 - () http://www.securityfocus.com/bid/25996 -

Information

Published : 2007-10-16 00:17

Updated : 2024-11-21 00:37


NVD link : CVE-2007-5470

Mitre link : CVE-2007-5470

CVE.ORG link : CVE-2007-5470


JSON object : View

Products Affected

microsoft

  • expression_media
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-310

Cryptographic Issues