SafeNet SoftRemote VPN Client Local Password Disclosure Vulnerability

SafeNet SoftRemote VPN Client Local Password Disclosure Vulnerability

SoftRemote and SoftRemoteLT VPN client utilities are reported prone to a local pre-shared key (password) disclosure vulnerability. It is reported that the VPN password is stored in the memory image of the process in plain-text format.

Credentials that are harvested through the exploitation of this vulnerability may then be used to aid in further attacks.