PassWD 1.2 Weak Encryption Vulnerability

PassWd 1.2 is a password management utility designed to store user login information to various URLs. The login information, which includes username, password and link location is stored in the pass.dat file which resides in the PassWD directory. The information is encrypted with a weak encoding algorithm and includes the key which can be used to decode any stored password.


 

Privacy Statement
Copyright 2010, SecurityFocus