NVD

Id
47652  
Name
CVE-2009-0320  
Description
Microsoft Windows XP, Server 2003 and 2008, and Vista exposes I/O activity measurements of all processes, which allows local users to obtain sensitive information, as demonstrated by reading the I/O Other Bytes column in Task Manager (aka taskmgr.exe) to estimate the number of characters that a different user entered at a runas.exe password prompt, related to a "benchmarking attack."  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
1.9  
CVSS Vector
(AV:L/AC:H/Au:N/C:C/I:N/A:N)  
Pub Date
2017-01-07  
Published
2009-01-28  
Modified Date
2009-01-29  
Seq
2009-0320  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
238742 47652 CVE-2009-0320 20090124 Benchmarking attacks and major security weakness on all recent Windows versions up to Windows 200  View
238743 47652 CVE-2009-0320 33440  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40697 JVNDB-2009-001703 Microsoft Windows における機密情報を取得される脆弱性 Microsoft Windows は、すべてのプロセスの I/O activity measurement を開示するため、機密情報を取得される脆弱性が存在します。 CVE-2009-0320 37751 CVE-2009-0320 47652 4 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001703.html 2009-01-28 2009-07-08 View