← CVECheck
HomeVulnerabilities

CVE-1999-1104 — MEDIUM severity vulnerability (Windows 95 uses weak encryption for the password list (.pwl))

Windows 95 uses weak encryption for the password list (.pwl) file used when password caching is enabled, which allows local users to gain privileges by decrypting the passwords.

CVE IDCVE-1999-1104
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published1999-12-31
Last modified2026-04-16
DescriptionWindows 95 uses weak encryption for the password list (.pwl) file used when password caching is enabled, which allows local users to gain privileges by decrypting the passwords.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →