Vulnerability Description
Citrix Metaframe Password Manager 2.5 and earlier stores a password in cleartext although it is obfuscated when presented to a user, which allows users to view their secondary passwords even if it is not allowed by policy.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Citrix | Metaframe Password Manager | 2.5 |
References
- http://securitytracker.com/id?1018077
- http://support.citrix.com/article/CTX105800
- http://support.citrix.com/kb/entry.jspa?entryID=5970&categoryID=254Vendor Advisory
- http://support.citrix.com/kb/entry.jspa?externalID=CTX105762PatchVendor Advisory
- http://www.securityfocus.com/bid/24041
- http://securitytracker.com/id?1018077
- http://support.citrix.com/article/CTX105800
- http://support.citrix.com/kb/entry.jspa?entryID=5970&categoryID=254Vendor Advisory
- http://support.citrix.com/kb/entry.jspa?externalID=CTX105762PatchVendor Advisory
- http://www.securityfocus.com/bid/24041
FAQ
What is CVE-2005-0822?
CVE-2005-0822 is a vulnerability with a CVSS score of 2.1 (LOW). Citrix Metaframe Password Manager 2.5 and earlier stores a password in cleartext although it is obfuscated when presented to a user, which allows users to view their secondary passwords even if it is ...
How severe is CVE-2005-0822?
CVE-2005-0822 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0822?
Check the references section above for vendor advisories and patch information. Affected products include: Citrix Metaframe Password Manager.