Vulnerabilities > CVE-2006-6182 - Local Information Disclosure vulnerability in Gabriele Teotino Gnotebook 0.7.0.1

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

gabriele-teotino

NVD

Published: 2006-12-01

Updated: 2008-09-05

Summary

The Gabriele Teotino GNotebook 0.7.0.1 gadget for Google Desktop stores Gmail passwords in plaintext in the %SYSTEMDRIVE%\temp\Gnotebook.txt log file, which allows local users to obtain passwords by reading the file.

Vulnerable Configurations

Part	Description	Count
Application	Gabriele_Teotino Gabriele Teotino Gnotebook 0.7.0.1	1

References

http://secunia.com/advisories/23191
http://securitytracker.com/id?1017286
http://www.securityfocus.com/bid/21307