Aurora Password Manager System Tray Icon Information Disclosure Vulnerability
BID:30749
Info
Aurora Password Manager System Tray Icon Information Disclosure Vulnerability
| Bugtraq ID: | 30749 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Aug 19 2008 12:00AM |
| Updated: | Aug 28 2008 03:54AM |
| Credit: | Ronnie Guthrie |
| Vulnerable: |
ANIMABILIS SOFTWARE Aurora Password Manager 3.0 |
| Not Vulnerable: | |
Discussion
Aurora Password Manager System Tray Icon Information Disclosure Vulnerability
Aurora Password Manager is prone to an information-disclosure vulnerability because it fails to restrict access to sensitive data in certain circumstances.
An attacker can exploit this issue to obtain stored sensitive information such as passwords or other data that may aid in further attacks.
Aurora Password Manager 3.0 is vulnerable; other versions may also be affected.
Aurora Password Manager is prone to an information-disclosure vulnerability because it fails to restrict access to sensitive data in certain circumstances.
An attacker can exploit this issue to obtain stored sensitive information such as passwords or other data that may aid in further attacks.
Aurora Password Manager 3.0 is vulnerable; other versions may also be affected.
Exploit / POC
Aurora Password Manager System Tray Icon Information Disclosure Vulnerability
Attackers need local, interactive access to a vulnerable computer to exploit this issue.
Attackers need local, interactive access to a vulnerable computer to exploit this issue.
Solution / Fix
Aurora Password Manager System Tray Icon Information Disclosure Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Aurora Password Manager System Tray Icon Information Disclosure Vulnerability
References:
References:
- Aurora Password Manager Homepage (ANIMABILIS SOFTWARE)