CVE-2005-1418

NetLeaf Limited NotJustBrowsing <1.0.3 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1418. PoCs published by Kozan.

AI-analyzed exploit summary This exploit reads the password stored in the NotJustBrowsing configuration file by leveraging a local file read vulnerability. It retrieves the installation path from the Windows Registry and then extracts the password from a specific offset in the configuration file.

Description

NetLeaf Limited NotJustBrowsing 1.0.3 stores the View Lock Password in plaintext in the notjustbrowsing.prf file, which allows local users to gain privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Kozan · clocalwindows
https://www.exploit-db.com/exploits/966

This exploit reads the password stored in the NotJustBrowsing configuration file by leveraging a local file read vulnerability. It retrieves the installation path from the Windows Registry and then extracts the password from a specific offset in the configuration file.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: NotJustBrowsing 1.0.3
No auth needed
Prerequisites: Local access to the system · NotJustBrowsing 1.0.3 installed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20319
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13442
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1013826
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/14687
Exploit third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15184

Scores

EPSS 0.0076
EPSS Percentile 50.2%

Details

Status published
Products (1)
netleaf_limited/notjustbrowsing 1.0.3
Published May 03, 2005
Tracked Since Feb 18, 2026