Vulnerabilities > CVE-2005-2866

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
mercora
exploit available
NVD
Published: 2005-09-08
Updated: 2008-09-05

Summary

Mercora IMRadio 4.0.0.0 stores usernames and passwords in plaintext in the MercoraClient\Profiles registry key, which allows local users to gain privileges.

Vulnerable Configurations

Part Description Count
Application
Mercora
1

Exploit-Db

descriptionMercora IMRadio <= 4.0.0.0 Local Password Disclosure Exploit. CVE-2005-2866. Local exploit for windows platform
idEDB-ID:1173
last seen2016-01-31
modified2005-08-22
published2005-08-22
reporterKozan
sourcehttps://www.exploit-db.com/download/1173/
titleMercora IMRadio <= 4.0.0.0 - Local Password Disclosure Exploit

References