Vulnerabilities > Passgo

DATE CVE VULNERABILITY TITLE RISK
2006-11-26 CVE-2006-5965 Local Insecure Default Directory Permisions vulnerability in Passgo SSO Plus 2.1.0.32
PassGo SSO Plus 2.1.0.32, and probably earlier versions, uses insecure permissions (Everyone/Full Control) for the PassGo Technologies directory, which allows local users to gain privileges by modifying critical programs.
local
low complexity
passgo
4.6
2006-10-19 CVE-2006-5406 Local Insecure Default Directory Permissions vulnerability in Passgo Defender 5.2
Passgo Defender 5.2 creates the application directory with insecure permissions (Everyone/Full Control), which allows local users to read and modify sensitive files.
local
low complexity
passgo
3.6