Kankun Smart Socket Device and Mobile Application Local Security Bypass Vulnerability

Kankun Smart Socket device is a wireless smart socket. mobile application is a mobile application for wireless smart socket. The Kankun Smart Socket device and mobile application use hard-coded AES 256-bit keys, which allow remote attackers to sniff the network, obtain sensitive information or...

Kernel: crypto: buffer overruns in RFC4106 implementation using AESNI

A buffer overflow flaw was found in the way the Linux kernel's Intel AES-NI instructions optimized version of the RFC4106 GCM mode decryption functionality handled fragmented packets. A remote attacker could use this flaw to crash, or potentially escalate their privileges on, a system over a...

Linux kernel AESNI buffer overflow vulnerability

Linux kernel is an open source operating system. A buffer overflow vulnerability exists in the 'driverrfc4106decrypt' function in the Linux kernel /arch/x86/crypto/aesni-intelglue.c file, which allows a local attacker to exploit the vulnerability by sending specially crafted IPSec packets to cras...

DEBIAN-CVE-2012-2686

crypto/evp/eaescbchmacsha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service application crash via crafted CBC data...

UBUNTU-CVE-2012-3458

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors...

Super Cryptography : The Next Generation Encryption

Super Cryptography : The Next Generation Encryption The next generation of encryption technologies meets this need by using Elliptic Curve Cryptography ECC to replace RSA and DH, and using Galois/Counter Mode GCM of the Advanced Encryption Standard AES block cipher for high-speed authenticated...

Super Cryptography : The Next Generation Encryption

Super Cryptography : The Next Generation Encryption The next generation of encryption technologies meets this need by using Elliptic Curve Cryptography ECC to replace RSA and DH, and using Galois/Counter Mode GCM of the Advanced Encryption Standard AES block cipher for high-speed authenticated...

UBUNTU-CVE-2010-3074

SSLCipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack...

RedHat Update for krb5 RHSA-2010:0029-01

Check for the Version of krb5 OpenVAS Vulnerability Test RedHat Update for krb5 RHSA-2010:0029-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

CVE-2005-1797

The CVE describes a timing-side-channel vulnerability in AES (Rijndael) implementations: S-box lookups are difficult to perform in constant time, potentially allowing remote attackers to recover encryption keys. Documents cite the theoretical possibility of key recovery via timing analysis and re...