ButtUglySoftware CleanCache Insecure Data Removal Vulnerability
BID:12117
Info
ButtUglySoftware CleanCache Insecure Data Removal Vulnerability
| Bugtraq ID: | 12117 |
| Class: | Design Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Dec 25 2004 12:00AM |
| Updated: | Dec 25 2004 12:00AM |
| Credit: | Discovery is credited to WBG Links <[email protected]>. |
| Vulnerable: |
ButtUglySoftware CleanCache 2.19 |
| Not Vulnerable: | |
Discussion
ButtUglySoftware CleanCache Insecure Data Removal Vulnerability
It is reported that CleanCache does not remove potentially sensitive data including cache contents in a secure manner. This can allow an attacker to disclose potentially sensitive information that may be used to carry out further attacks against a vulnerable computer and users.
CleanCache 2.19 is reported prone to this vulnerability.
It is reported that CleanCache does not remove potentially sensitive data including cache contents in a secure manner. This can allow an attacker to disclose potentially sensitive information that may be used to carry out further attacks against a vulnerable computer and users.
CleanCache 2.19 is reported prone to this vulnerability.
Exploit / POC
ButtUglySoftware CleanCache Insecure Data Removal Vulnerability
An exploit is not required.
An exploit is not required.
Solution / Fix
ButtUglySoftware CleanCache Insecure Data Removal Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
ButtUglySoftware CleanCache Insecure Data Removal Vulnerability
References:
References:
- CleanCache Fails to Wipe Files (SecurityTracker)
- Home Page (ButtUglySoftware)