Microsoft Windows 9x cache could reveal plaintext password
| 9x-plaintext-pwd (3574) |  High Risk |
Description:
Microsoft Windows legacy mechanism for caching network security credentials could reveal username and password. Remote attackers could perform a malicious query on the legacy mechanism to obtain the network plaintext password of the last person to use the computer for network access.
Consequences:
Obtain Information
Remedy:
Obtain and install the appropriate patch from Microsoft, as listed in the Microsoft Security Bulletin MS99-052, or upgrade to Windows 98 Second Edition. See References.
References:
- Microsoft Knowledge Base Article 168115: Malicious User with Physical Access to a Computer Can Acquire Cached Domain Password.
- Microsoft Security Bulletin MS99-052: Patch Available for "Legacy Credential Caching" Vulnerability.
- BID-829: Microsoft Windows 9x Plaintext Credential Cache Vulnerability
- CVE-1999-0387: A legacy credential caching mechanism used in Windows 95 and Windows 98 systems allows attackers to read plaintext network passwords.
- OSVDB ID: 1146: Microsoft Windows 9x Credential Cache Cleartext Password Disclosure
Platforms Affected:
- Microsoft Windows 95
- Microsoft Windows 98
Reported:
Nov 29, 1999
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this