CVE-2005-3856

high

Description

The Popular URL capability (popularurls.cpp) in Krusader 1.60.0 and 1.70.0-beta1 saves passwords in cleartext in the krusaderrc file when the user enters URLs containing passwords in the panel URL field, which might allow attackers to access other sites.

References

http://www.krusader.org/phpBB/viewtopic.php?t=1368

http://www.krusader.org/phpBB/viewtopic.php?t=1367

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336169

Details

Source: Mitre, NVD

Published: 2005-11-27

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.00355