CVE-2010-3074

2010-09-17T18:00:00
ID CVE-2010-3074
Type cve
Reporter cve@mitre.org
Modified 2011-01-14T06:46:00

Description

SSL_Cipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack.