Vulnerabilities > CVE-2005-0346 - Information Disclosure vulnerability in Softremote Vpn Client

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

safenet

NVD

Published: 2005-05-02

Updated: 2017-07-11

Summary

SafeNet SoftRemote VPN Client stores the VPN password (pre-shared key) in cleartext in memory of the IreIKE.exe process, which allows local users to gain sensitive information if they have access to that process.

Vulnerable Configurations

Part	Description	Count
Application	Safenet Safenet Softremote VPN Client *	1

References

http://marc.info/?l=bugtraq&m=110791865522076&w=2
http://securitytracker.com/id?1013134
http://www.nta-monitor.com/news/vpn-flaws/safenet/index.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/19256