Title: Credant Mobile Guardian Shield Information Disclosure Vulnerability
Severity: MODERATE
Description:
Credant Mobile Guardian Shield is a security application for handheld devices running Microsoft Windows.
The application is prone to an information-disclosure vulnerability because it stores sensitive password information in plain text. The application fails to encrypt the Windows paging file and memory where information on domain names and passwords is stored by default.
Exploiting this issue may allow attackers to obtain the passwords of victim users running the affected application.
This issue affects Credant Mobile Guardian Shield 5.2.1.105 and prior versions.
Affected Products:
- Credant Credant Mobile Guardian Shield for Windows 5.2.1.105
References:
- Credant: Credant Mobile Guardian Shield
- US-CERT: Vulnerability Note VU#821865 - CREDANT Mobile Guardian Shield fails to remove cr
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
