cbcvebase.
CVE-2008-3899
published 2008-09-03

CVE-2008-3899: TrueCrypt 5.0 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local…

PriorityP44low2.1CVSS 2.0
AVLACLAuNCPINAN
EPSS
0.32%
23.3th percentile
TrueCrypt 5.0 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this buffer. NOTE: the researcher mentions a response from the vendor denying the vulnerability.

Affected

1 ranges
VendorProductVersion rangeFixed in
truecrypt_foundationtruecrypt
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.