<p>Multiple vulnerabilities in TK8 Safe v.3.0.5</p>
<p>July 3, 2006</p>
<p>----</p>
<p>Summary:<br>TK8 Safe (<a href="http://www.tk8.com/">www.tk8.com</a>) is a password management application, which stores authentication details (and other sensitive data) in encrypted local folders. A number of issues have been discovered in version
3.0.5 of the application that present a risk to the integrity and availability of stored user data.</p>
<p>Business Impact:<br>Successful exploitation of the issues discovered could lead to system unavailability, the overwriting of sensitive data, and unrestricted access to sensitive data. Attacks against the application require limited technical knowledge.
</p>
<p>Affected products:<br>TK8 Safe v.3.0.5 Standard and Pro Editions.</p>
<p>----</p>
<p>Description:<br>TK8 Safe v.3.0.5 allows users to set encrypted data repositories with weak or null passwords.</p>
<p>Remediation:<br>Assign a strong password to working folders. The vendor is addressing this issue in a forthcoming release (expected delivery date October 2006).</p>
<p>Description:<br>It is possible for a malicious attacker to brute force the password(s) for protected folder(s). No timeout functionality is instigated, meaning that although it is impossible for a legitimate user to 'lock out' their account, it is possible for a malicious attacker (or an automated agent) to have repeated attempts at directory access.
</p>
<p>Remediation:<br>Upgrade to TK8 Safe v.3.0.6 available from vendor website.</p>
<p>Description: <br>It is possible for a malicious attacker to overwrite a legitimate directory. </p>
<p>Remdiation: <br>Upgrade to TK8 Safe v.3.0.6 available from vendor website.</p>
<p>Description: <br>Insufficient bounds checking is in place within various fields within the application. By entering a string of sufficient length is is possible to create a variety a localised application DoS state.</p>
<p>Remdiation: <br>Upgrade to TK8 Safe v.3.0.6 available from vendor website.</p>
<p>----</p>
<p>Credit:<br>Vulnerabilities discovered by Michael Kemp (<a href="http://www.clappymonkey.com/">www.clappymonkey.com</a>).<br> </p>