Vulnerability Description
Novell Challenge Response Client (LCM) 2.7.5 and earlier, as used with Novell Client for Windows 4.91 SP4, allows users with physical access to a locked system to obtain contents of the clipboard by pasting the contents into the Challenge Question field.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Challenge Response Client | <= 2.7.5 |
| Novell | Novell Client For Windows | 4.91_sp4 |
References
- http://secunia.com/advisories/28792Vendor Advisory
- http://www.securityfocus.com/bid/27631
- http://www.securitytracker.com/id?1019304
- http://www.vupen.com/english/advisories/2008/0423/references
- https://secure-support.novell.com/KanisaPlatform/Publishing/686/3726376_f.SAL_Pu
- http://secunia.com/advisories/28792Vendor Advisory
- http://www.securityfocus.com/bid/27631
- http://www.securitytracker.com/id?1019304
- http://www.vupen.com/english/advisories/2008/0423/references
- https://secure-support.novell.com/KanisaPlatform/Publishing/686/3726376_f.SAL_Pu
FAQ
What is CVE-2008-0663?
CVE-2008-0663 is a vulnerability with a CVSS score of 2.1 (LOW). Novell Challenge Response Client (LCM) 2.7.5 and earlier, as used with Novell Client for Windows 4.91 SP4, allows users with physical access to a locked system to obtain contents of the clipboard by p...
How severe is CVE-2008-0663?
CVE-2008-0663 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-0663?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Challenge Response Client, Novell Novell Client For Windows.