First published: Fri Feb 08 2008(Updated: )
Novell Challenge Response Client (LCM) 2.7.5 and earlier, as used with Novell Client for Windows 4.91 SP4, allows users with physical access to a locked system to obtain contents of the clipboard by pasting the contents into the Challenge Question field.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Novell Challenge Response Client | <=2.7.5 | |
Novell NetWare Client | =4.91_sp4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2008-0663 is considered a moderate severity vulnerability due to the potential for unauthorized access to sensitive clipboard data.
To mitigate CVE-2008-0663, upgrade to a version of the Novell Challenge Response Client later than 2.7.5.
CVE-2008-0663 requires physical access to the locked system to exploit the vulnerability.
CVE-2008-0663 affects Novell Challenge Response Client versions 2.7.5 and earlier, and Novell Client for Windows version 4.91 SP4.
CVE-2008-0663 allows access to the contents of the clipboard by pasting it into the Challenge Question field.