CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-7255

login_screen.tcl in aMSN (aka Alvaro's Messenger) before 0.97.1 saves a password after logout, which allows physically proximate attackers to hijack a session by visiting an unattended workstation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.8%

CVSS Severity

CVSS v2 Score 4.6

References

http://amsn.svn.sourceforge.net/viewvc/amsn/trunk/amsn/login_screen.tcl?r1=9960&r2=10259&pathrev=10259
http://sourceforge.net/project/shownotes.php?release_id=610067
http://www.amsn-project.net/forums/index.php?topic=5317.0
http://amsn.svn.sourceforge.net/viewvc/amsn/trunk/amsn/login_screen.tcl?r1=9960&r2=10259&pathrev=10259
http://sourceforge.net/project/shownotes.php?release_id=610067
http://www.amsn-project.net/forums/index.php?topic=5317.0

Products affected by CVE-2008-7255

Amsn » Amsn » Version: Any

cpe:2.3:a:amsn:amsn:*
Amsn » Amsn » Version: 0.83

cpe:2.3:a:amsn:amsn:0.83
Amsn » Amsn » Version: 0.90

cpe:2.3:a:amsn:amsn:0.90
Amsn » Amsn » Version: 0.91

cpe:2.3:a:amsn:amsn:0.91
Amsn » Amsn » Version: 0.92

cpe:2.3:a:amsn:amsn:0.92
Amsn » Amsn » Version: 0.93

cpe:2.3:a:amsn:amsn:0.93
Amsn » Amsn » Version: 0.94

cpe:2.3:a:amsn:amsn:0.94
Amsn » Amsn » Version: 0.95

cpe:2.3:a:amsn:amsn:0.95
Amsn » Amsn » Version: 0.96

cpe:2.3:a:amsn:amsn:0.96

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-7255

Products

Pricing

Contact Us