Vulnerabilities > CVE-2007-1505 - Information Disclosure vulnerability in Fujitsu Fence and Systemwalker Desktop Encryption

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

fujitsu

NVD

Published: 2007-03-19

Updated: 2017-08-17

Summary

Fujitsu FENCE-Pro before V5L01, and Systemwalker Desktop Encryption V12.0L10, V12.0L10A, V12.0L10B, V12.0L20 and V13.0.0 allows local users to obtain sensitive information by extracting the decoding password from certain "self-decoding" file types.

Vulnerable Configurations

Part	Description	Count
Application	Fujitsu Fujitsu Fence 2 Fujitsu Fence 3 Fujitsu Fence 4 Fujitsu Systemwalker Desktop Encryption V12.0L10 Fujitsu Systemwalker Desktop Encryption V12.0L10A Fujitsu Systemwalker Desktop Encryption V12.0L10B Fujitsu Systemwalker Desktop Encryption V12.0L20 Fujitsu Systemwalker Desktop Encryption V13.0.0	8

References

http://jvn.jp/jp/JVN%2319795972/index.html
http://osvdb.org/34184
http://secunia.com/advisories/24537
http://secunia.com/advisories/24549
http://segroup.fujitsu.com/secure/products/fence/notice/alert20070316.html
http://software.fujitsu.com/jp/security/products-fujitsu/solution/systemwalker_dte_200701.html
http://www.securityfocus.com/bid/23001
https://exchange.xforce.ibmcloud.com/vulnerabilities/33029