Vulnerability Details CVE-2005-3801
CounterPane PasswordSafe 1.x and 2.x allows local users to test possible encryption keys against a subset of the stored key data without performing the more expensive key derivation function (KDF) function, which reduces the search time in brute force attacks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.1%
CVSS Severity
CVSS v2 Score 4.6
References
- http://marc.info/?l=bugtraq&m=113217074200452&w=2
- http://securityreason.com/securityalert/190
- http://www.osvdb.org/21244
- http://www.securityfocus.com/bid/15455
- http://marc.info/?l=bugtraq&m=113217074200452&w=2
- http://securityreason.com/securityalert/190
- http://www.osvdb.org/21244
- http://www.securityfocus.com/bid/15455
Products affected by CVE-2005-3801
-
cpe:2.3:a:counterpane:passwordsafe:1.9.0
-
cpe:2.3:a:counterpane:passwordsafe:1.9.1a
-
cpe:2.3:a:counterpane:passwordsafe:1.9.2
-
cpe:2.3:a:counterpane:passwordsafe:1.9.2-dk_experimental
-
cpe:2.3:a:counterpane:passwordsafe:1.9.2a
-
cpe:2.3:a:counterpane:passwordsafe:1.9.2b
-
cpe:2.3:a:counterpane:passwordsafe:1.9.2b_ppc
-
cpe:2.3:a:counterpane:passwordsafe:1.9.2c
-
cpe:2.3:a:counterpane:passwordsafe:1.9.2c.1
-
cpe:2.3:a:counterpane:passwordsafe:1.9.2c.2
-
cpe:2.3:a:counterpane:passwordsafe:2.0
-
cpe:2.3:a:counterpane:passwordsafe:2.01
-
cpe:2.3:a:counterpane:passwordsafe:2.02
-
cpe:2.3:a:counterpane:passwordsafe:2.03
-
cpe:2.3:a:counterpane:passwordsafe:2.04
-
cpe:2.3:a:counterpane:passwordsafe:2.05
-
cpe:2.3:a:counterpane:passwordsafe:2.06
-
cpe:2.3:a:counterpane:passwordsafe:2.07
-
cpe:2.3:a:counterpane:passwordsafe:2.08
-
cpe:2.3:a:counterpane:passwordsafe:2.09
-
cpe:2.3:a:counterpane:passwordsafe:2.10
-
cpe:2.3:a:counterpane:passwordsafe:2.11
-
cpe:2.3:a:counterpane:passwordsafe:2.12
-
cpe:2.3:a:counterpane:passwordsafe:2.13
-
cpe:2.3:a:counterpane:passwordsafe:2.14