CVE-2005-0619

bfriendly.com/einstein < 1.0.1 - Plaintext Credential Storage in Registry

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2005-0619. PoCs published by illwill, Kozan.

AI-analyzed exploit summary This exploit reads the username and password stored in plaintext in the Windows Registry by the Einstein v1.01 file-sharing program. It leverages the lack of encoding to extract credentials and display them to the attacker.

Description

Einstein 1.0.1 stores sensitive information such as usernames and passwords in plaintext in the registry, which allows local users to gain privileges.

Exploits (2)

exploitdb WORKING POC VERIFIED
by illwill · assemblylocalwindows
https://www.exploit-db.com/exploits/848

This exploit reads the username and password stored in plaintext in the Windows Registry by the Einstein v1.01 file-sharing program. It leverages the lack of encoding to extract credentials and display them to the attacker.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Einstein v1.01
No auth needed
Prerequisites: Einstein v1.01 installed on the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Kozan · c++localwindows
https://www.exploit-db.com/exploits/846

This exploit reads the username and password stored in plaintext in the Windows Registry by Einstein v1.01, demonstrating an information disclosure vulnerability. It uses the Windows API to query registry values under HKEY_LOCAL_MACHINE\Software\einstein.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Einstein v1.01 (and previous versions)
No auth needed
Prerequisites: Local access to the target system · Einstein v1.01 installed on the system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Vendor Advisory vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1013316
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/14212
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/846
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/14455

Scores

EPSS 0.0034
EPSS Percentile 57.5%

Details

Status published
Products (1)
bfriendly.com/einstein < 1.0.1
Published Feb 28, 2005
Tracked Since Feb 18, 2026