Vulnerabilities > CVE-2005-1414 - Local Information Disclosure vulnerability in FilePocket

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

exoticsoft

exploit available

NVD

Published: 2005-05-03

Updated: 2017-07-11

Summary

ExoticSoft FilePocket 1.2 stores sensitive proxy information, including proxy passwords, in plaintext in the registry, which allows local users to gain privileges.

Vulnerable Configurations

Part	Description	Count
Application	Exoticsoft Exoticsoft Filepocket 1.2	1

Exploit-Db

description	FilePocket 1.2 Local Proxy Password Disclosure Exploit. CVE-2005-1414. Local exploit for windows platform
id	EDB-ID:964
last seen	2016-01-31
modified	2005-04-28
published	2005-04-28
reporter	Kozan
source	https://www.exploit-db.com/download/964/
title	FilePocket 1.2 - Local Proxy Password Disclosure Exploit

References

http://securitytracker.com/id?1013823
http://www.osvdb.org/14685
http://www.securityfocus.com/bid/13445
https://exchange.xforce.ibmcloud.com/vulnerabilities/26187