Vulnerabilities

CVE-2014-2005

by Fred · 25/06/2014

Sophos Disk Encryption (SDE) 5.x in Sophos Enterprise Console (SEC) 5.x before 5.2.2 does not enforce intended authentication requirements for a resume action from sleep mode, which allows physically proximate attackers to obtain desktop access by leveraging the absence of a login screen.

Date published : 2014-06-25

http://www.securityfocus.com/bid/68169

http://www.sophos.com/en-us/support/knowledgebase/121066.aspx

Related

Tags: Cybersecurity Alert