CVE-2001-0984
CVE-2001-0984 is a medium-severity vulnerability in Counterpane Password Safe with a CVSS 2.0 base score of 4.6. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Medium (CVSS 2.0 base score 4.6)
- EPSS exploit prediction: 0% (27th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Counterpane Password Safe
- Published:
- Last modified:
Description
Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the clipboard and minimizes Password Safe with the "Clear the password when minimized" and "Lock password database on minimize and prompt on restore" options enabled, which could allow an attacker with access to the memory (e.g. an administrator) to read the passwords.
Frequently asked questions
- What is CVE-2001-0984?
- Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the clipboard and minimizes Password Safe with the "Clear the password when minimized" and "Lock password database on minimize and prompt on restore" options enabled, which could allow an attacker with access to the memory (e.g. an administrator) to read the passwords.
- How severe is CVE-2001-0984?
- CVE-2001-0984 has a CVSS 2.0 base score of 4.6, rated medium severity.
- Is CVE-2001-0984 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (27th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2001-0984?
- CVE-2001-0984 affects Counterpane Password Safe. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2001-0984?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2001-0984 published?
- CVE-2001-0984 was published on 2001-09-13 and last updated on 2026-06-16.
References
- http://www.securityfocus.com/archive/1/213931
- http://www.securityfocus.com/bid/3337
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7123
Affected products (1)
- cpe:2.3:a:counterpane:password_safe:1.7.1:*:*:*:*:*:*:*
More vulnerabilities in Counterpane Password Safe
- CVE-2006-1378 — Medium (CVSS 4.9): PasswordSafe 3.0 beta, when running on Windows before XP, uses a weak random number generator (C++ rand function)…