CVE-2005-2209 — MEDIUM (5.5)

Vulnerability Description

Capturix ScanShare 1.06 build 50 stores sensitive information such as the password in cleartext in capturixss_cfg.ini, which is readable by local users.

CVSS Score

5.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Capturix	Scanshare	1.06

Related Weaknesses (CWE)

CWE-312

References

http://secunia.com/advisories/15995Broken Link
http://securitytracker.com/id?1014409Broken LinkExploitThird Party Advisory
http://secunia.com/advisories/15995Broken Link
http://securitytracker.com/id?1014409Broken LinkExploitThird Party Advisory

FAQ

What is CVE-2005-2209?

CVE-2005-2209 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Capturix ScanShare 1.06 build 50 stores sensitive information such as the password in cleartext in capturixss_cfg.ini, which is readable by local users.

How severe is CVE-2005-2209?

CVE-2005-2209 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2005-2209?

Check the references section above for vendor advisories and patch information. Affected products include: Capturix Scanshare.