CVE-2008-3897

DiskCryptor 0.2.6 on Windows stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
cpe:2.3:a:freed0m:disckcryptor:0.2.6:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-09-03 14:12

Updated : 2024-02-28 11:21


NVD link : CVE-2008-3897

Mitre link : CVE-2008-3897

CVE.ORG link : CVE-2008-3897


JSON object : View

Products Affected

freed0m

  • disckcryptor

microsoft

  • windows
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor