Vulnerability Description
Geert Moernaut LSrunasE and Supercrypt use an encryption key composed of an SHA1 hash of a fixed string embedded in the executable file, which makes it easier for local users to obtain this key without reverse engineering.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Geert Moernaut | Lsrunase | All versions |
| Geert Moernaut | Supercrypt | All versions |
Related Weaknesses (CWE)
References
- http://securityreason.com/securityalert/3611
- http://www.securityfocus.com/archive/1/487269/100/0/threaded
- http://www.securityfocus.com/bid/27500
- http://securityreason.com/securityalert/3611
- http://www.securityfocus.com/archive/1/487269/100/0/threaded
- http://www.securityfocus.com/bid/27500
FAQ
What is CVE-2008-0580?
CVE-2008-0580 is a vulnerability with a CVSS score of 2.1 (LOW). Geert Moernaut LSrunasE and Supercrypt use an encryption key composed of an SHA1 hash of a fixed string embedded in the executable file, which makes it easier for local users to obtain this key withou...
How severe is CVE-2008-0580?
CVE-2008-0580 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-0580?
Check the references section above for vendor advisories and patch information. Affected products include: Geert Moernaut Lsrunase, Geert Moernaut Supercrypt.