Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 SafeNet SoftRemote VPN Client Discloses Key to Local Users
Categorie: Vulnerability
Posted: 2005-02-11 by ReCall
Views: 368
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: A vulnerability was reported in the SafeNet SoftRemote VPN client. A local user may be able to obtain the VPN key.

The SafeNet SoftRemote client 'IreIKE.exe' process stores the VPN password (i.e., preshare key) in process memory. A local user with access to memory can obtain the key.

The client also stores the key in encoded form in the Windows Registry and in policy files ('.spd' files). A local user with access to the registry or the policy files can decode the key.

NTA Monitor reported this vulnerability.

The original advisory is available at:

http://www.nta-monitor.com/news/vpn-flaws/safenet/index.htm

Impact: A local user may be able to obtain the VPN key.

Solution: The vendor has prepared a fix, to be available shortly.
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=1349

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES