Plaintext Storage of Sensitive Information in H-Sphere Winbox 2.4.2 and 2.4.3 RC1 Log Files

Plaintext Storage of Sensitive Information in H-Sphere Winbox 2.4.2 and 2.4.3 RC1 Log Files

CVE-2005-1606 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

H-Sphere Winbox 2.4.2 and 2.4.3 RC1 stores sensitive information such as username and password in plaintext in world-readable log files, which allows local users to gain privileges.

Learn more about our User Device Pen Test.