TrueCrypt 5.0 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer. NOTE: the researcher mentions a response from the vendor denying the vulnerability.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2008-09-03T14:00:00
Updated: 2018-10-11T19:57:01
Reserved: 2008-09-03T00:00:00
Link: CVE-2008-3899
JSON object: View
NVD Information
Status : Modified
Published: 2008-09-03T14:12:00.000
Modified: 2018-10-11T20:50:20.390
Link: CVE-2008-3899
JSON object: View
Redhat Information
No data.
CWE