Vulnerabilities > CVE-2006-1198 - Unspecified vulnerability in Comvigo IM Lock Home2006/Professional2006
Attack vector
LOCAL Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Comvigo IM Lock 2006 uses a simple substitution cipher to encrypt a password stored in the msnvs\prc registry value, for which all users have Read permission, which allows local users to bypass the product's blocking functionality by decrypting the password.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |