First published: Tue Aug 12 2008(Updated: )
Unspecified vulnerability in McAfee Encrypted USB Manager 3.1.0.0, when the Re-use Threshold for passwords is nonzero, allows remote attackers to conduct offline brute force attacks via unknown vectors.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
McAfee Encrypted USB Manager | =3.1.0.0 |
http://www.mcafee.com/apps/downloads/security_updates/hotfixes.asp?region=us&segment=enterprise
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2008-3605 is considered a medium severity vulnerability due to its potential to allow offline brute force attacks.
To mitigate CVE-2008-3605, ensure that the Re-use Threshold for passwords is set to zero and apply any available software updates from McAfee.
Users of McAfee Encrypted USB Manager version 3.1.0.0 are affected by CVE-2008-3605.
The main risk posed by CVE-2008-3605 is the potential for remote attackers to conduct offline brute force password attacks.
CVE-2008-3605 specifically concerns McAfee Encrypted USB Manager, particularly version 3.1.0.0.