RSS   Vulnerabilities for 'Pocketexpense pro'   RSS

2006-09-13
 
CVE-2006-4745

CWE-Other
 

 
ScaryBear PocketExpense Pro 3.9.1 uses an internally recorded key to protect a data file whose contents are stored in plaintext, which allows local users to disable authentication and access the file by modifying a certain value in the file header.

 


Copyright 2024, cxsecurity.com

 

Back to Top