Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-3073HistorySep 17, 2010 - 6:00 p.m.
CVE-2010-3073
2010-09-1718:00:02
Debian Security Bug Tracker
security-tracker.debian.org
9
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
0.4%
SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle integer data sizes when constructing headers intended for randomization of initialization vectors, which makes it easier for local users to obtain sensitive information by defeating cryptographic protection mechanisms.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | encfs | < 1.7.2-1 | encfs_1.7.2-1_all.deb |
| Debian | 11 | all | encfs | < 1.7.2-1 | encfs_1.7.2-1_all.deb |
| Debian | 999 | all | encfs | < 1.7.2-1 | encfs_1.7.2-1_all.deb |
| Debian | 13 | all | encfs | < 1.7.2-1 | encfs_1.7.2-1_all.deb |
Related
cvelist
cvelist
CVE-2010-3073
2010-09-17 17:46:00
prion
prion
Design/Logic Flaw
2010-09-17 18:00:00
nvd
nvd
CVE-2010-3073
2010-09-17 18:00:02
cve
cve
CVE-2010-3073
2010-09-17 18:00:02
ubuntucve
ubuntucve
CVE-2010-3073
2010-09-17 00:00:00
nessus
nessus
openSUSE Security Update : encfs (openSUSE-SU-2010:1028-1)
2011-05-05 00:00:00
Fedora 13 : fuse-encfs-1.7.2-1.fc13 (2010-14268)
2010-09-16 00:00:00
openSUSE Security Update : encfs (openSUSE-SU-2010:1028-1)
2011-05-05 00:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
0.4%
Related for DEBIANCVE:CVE-2010-3073