CVE-2008-3775

MEDIUM

Folder Lock <5.9.5 - Info Disclosure

Title source: llm

Description

Folder Lock 5.9.5 and earlier uses weak encryption (ROT-25) for the password, which allows local administrators to obtain sensitive information by reading and decrypting the QualityControl\_pack registry value.

References (5)

[Broken Link, Vendor Advisory] http://secunia.com/advisories/31559

[Broken Link] http://securityreason.com/securityalert/4183

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/495612/100/0/threaded

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/30771

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/44575

Scores

CVSS v3 4.4

EPSS 0.0005

EPSS Percentile 14.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-327

Status draft

Affected Products (1)

newsoftwares/folder_lock < 5.9.5

Timeline

Published Aug 22, 2008

Tracked Since Feb 18, 2026