ID CVE-2001-0152
Summary The password protection option for the Compressed Folders feature in Plus! for Windows 98 and Windows Me writes password information to a file, which allows local users to recover the passwords and read the compressed folders.
References
Vulnerable Configurations
  • Microsoft Plus
    cpe:2.3:a:microsoft:plus
CVSS
Base: 2.1 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
metasploit via4
description This module extracts clear text credentials from dynazip.log. The log file contains passwords used to encrypt compressed zip files in Microsoft Plus! 98 and Windows Me.
id MSF:POST/WINDOWS/GATHER/CREDENTIALS/DYNAZIP_LOG
last seen 2019-02-24
modified 2019-01-10
published 2017-02-22
reliability Normal
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/post/windows/gather/credentials/dynazip_log.rb
title Windows Gather DynaZIP Saved Password Extraction
refmap via4
ms MS01-019
Last major update 05-09-2008 - 16:23
Published 03-05-2001 - 00:00
Last modified 12-10-2018 - 17:30
Back to Top