Plaintext Password Storage Vulnerability in grpWise.exe

Plaintext Password Storage Vulnerability in grpWise.exe

CVE-2005-2620 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

grpWise.exe for Novell GroupWise client 5.5 through 6.5.2 stores the password in plaintext in memory, which allows attackers to obtain the password using a debugger or another mechanism to read process memory.

Learn more about our Web Application Penetration Testing UK.