CVE Vulnerabilities

CVE-2006-3816

Published: Jul 25, 2006 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Krusader 1.50-beta1 up to 1.70.0 stores passwords for remote connections in cleartext in the bookmark file (krbookmarks.xml), which allows attackers to steal passwords by obtaining the file.

Affected Software

Name Vendor Start Version End Version
Krusader Krusader 1.70.0 1.70.0
Krusader Krusader 1.70.0_beta1 1.70.0_beta1
Krusader Krusader 1.60.0 1.60.0
Krusader Krusader 1.50_beta1 1.50_beta1

References