CVE-2008-3893

Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer.

Published: Sep 3, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-3893
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 1.9
AV:L/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
microsoft / windows_vista	-	-

http://secunia.com/advisories/31619
http://www.ivizsecurity.com/security-advisory-iviz-sr-0801.html

Vulnerability Database

289,599

CVE-2008-3893