Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer.
References
Link | Resource |
---|---|
http://secunia.com/advisories/31619 | Vendor Advisory |
http://www.ivizsecurity.com/security-advisory-iviz-sr-0801.html |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2008-09-03 14:12
Updated : 2024-02-28 11:21
NVD link : CVE-2008-3893
Mitre link : CVE-2008-3893
CVE.ORG link : CVE-2008-3893
JSON object : View
Products Affected
microsoft
- windows_vista
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor