CVE-2005-2444 Information

Description

Trillian Pro 3.1 build 121 when checking Yahoo e-mail stores the password in plaintext in a world readable file and does not delete the file after login which allows local users to obtain sensitive information.

Reference

http://marc.info/?l=bugtraq&m=112274667603628&w=2 http://secunia.com/advisories/16289 https://exchange.xforce.ibmcloud.com/vulnerabilities/21667