CVE-2005-4176
published 2005-12-11CVE-2005-4176: AWARD Bios Modular 4.50pg does not clear the keyboard buffer after reading the BIOS password during system startup, which allows local administrators or users…
PriorityP413low2.1CVSS 2.0
AVLACLAuNCPINAN
EXPLOIT
EPSS
1.26%
65.9th percentile
AWARD Bios Modular 4.50pg does not clear the keyboard buffer after reading the BIOS password during system startup, which allows local administrators or users to read the password directly from physical memory.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Multiple Vendor BIOS - Keyboard Buffer Password Persistence (1)
exploitdb·2005-12-06
CVE-2005-4176 Multiple Vendor BIOS - Keyboard Buffer Password Persistence (1)
Multiple Vendor BIOS - Keyboard Buffer Password Persistence (1)
---
source: https://www.securityfocus.com/bid/15751/info
Multiple vendors fail to clear the BIOS (Basic Input-Output System) keyboard buffer after reading the preboot authentication password during the system startup process.
Depending on the operating system running on affected computers, the memory region may or may not be available for user-level access. With Linux operating systems, superuser access is required. With Microsoft Windows operating systems, nonprivileged users may access the keyboard buffer region.
Attackers who obtain the password used for preboot authentication may then use it for further attacks.
UPDATE: Reportedly, the BIOS API calls and the BIOS keyboard buffer are used by various preboot authentica
Exploit-DB
Multiple Vendor BIOS - Keyboard Buffer Password Persistence (2)
exploitdb·2005-12-06
CVE-2005-4176 Multiple Vendor BIOS - Keyboard Buffer Password Persistence (2)
Multiple Vendor BIOS - Keyboard Buffer Password Persistence (2)
---
// source: https://www.securityfocus.com/bid/15751/info
Multiple vendors fail to clear the BIOS (Basic Input-Output System) keyboard buffer after reading the preboot authentication password during the system startup process.
Depending on the operating system running on affected computers, the memory region may or may not be available for user-level access. With Linux operating systems, superuser access is required. With Microsoft Windows operating systems, nonprivileged users may access the keyboard buffer region.
Attackers who obtain the password used for preboot authentication may then use it for further attacks.
UPDATE: Reportedly, the BIOS API calls and the BIOS keyboard buffer are used by various preboot authent
No writeups or analysis indexed.
http://www.ivizsecurity.com/preboot-patch.htmlhttp://www.ivizsecurity.com/research/preboot/preboot_whitepaper.pdfhttp://www.kb.cert.org/vuls/id/847537http://www.pulltheplug.org/users/endrazine/Bios.Information.Leakage.txthttp://www.securityfocus.com/archive/1/419610/100/0/threadedhttp://www.securityfocus.com/bid/15751http://www.ivizsecurity.com/preboot-patch.htmlhttp://www.ivizsecurity.com/research/preboot/preboot_whitepaper.pdfhttp://www.kb.cert.org/vuls/id/847537http://www.pulltheplug.org/users/endrazine/Bios.Information.Leakage.txthttp://www.securityfocus.com/archive/1/419610/100/0/threadedhttp://www.securityfocus.com/bid/15751
2005-12-11
Published