CVE-2006-4745

CVE-2006-4745 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:P/A:N

ScaryBear PocketExpense Pro 3.9.1 uses an internally recorded key to protect a data file whose contents are stored in plaintext, which allows local users to disable authentication and access the file by modifying a certain value in the file header.

Learn more about our Internal Network Penetration Testing.