DiskCryptor 0.2.6 on Windows stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer.
References
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2008-09-03 14:12
Updated : 2024-02-28 11:21
NVD link : CVE-2008-3897
Mitre link : CVE-2008-3897
CVE.ORG link : CVE-2008-3897
JSON object : View
Products Affected
freed0m
- disckcryptor
microsoft
- windows
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor