CVE-2002-1696

The CVE concerns Microsoft Outlook plug-in PGP 7.0, 7.0.3, and 7.0.4. When the user replies to an encrypted message with the option “Automatically decrypt/verify when opening messages” enabled and “Always use Secure Viewer when decrypting” disabled, a decrypted copy of the message is silently sav...

UPBdecrypt.pl.txt

!/usr/bin/perl Passwords Decrypter for UPB $optf" || die "- Unable to open $optf: $!"; print RESULTS "Results for $opth\n","="x40,"\n\n"; for$in=0;$in/ && print RESULTS "Username: $1\n"; $page$in=m/^$1.?/ && print RESULTS "Crypted P...

Ultimate PHP Board 1.9.6 GOLD - users.dat Password Decryptor

!/usr/bin/perl Passwords Decrypter for UPB $optf" || die "- Unable to open $optf: $!"; print RESULTS "Results for $opth\n","="x40,"\n\n"; for$in=0;$in/ && print RESULTS "Username: $1\n"; $page$in=m/^$1.?/ && print R...

CVE-2004-2136

dm-crypt on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain "IV computation" weaknesses that allow watermarked files to be detected without decryption...

CVE-2004-2135

cryptoloop on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain "IV computation" weaknesses that allow watermarked files to be detected without decryption...

CVE-2004-2136

The CVE-2004-2136 entry concerns dm-crypt in the Linux kernel (2.6.x) used on certain filesystems with block sizes of 1024 or greater. The underlying issue is an IV computation weakness in the encryption mode that can allow watermarked files to be detected without decrypting the data. The availab...

CVE-2004-2135

Cryptoloop in Linux kernel 2.6.x, when used on file systems with a block size of 1024 or greater, contains IV computation weaknesses that allow watermarked files to be detected without decryption. The documented impact is PARTIAL confidentiality loss. No exploits, specific remediations, or affect...

CVE-2005-0039

CVE-2005-0039 describes vulnerabilities in IPsec configurations where using ESP in tunnel mode (with CBC mode) or AH without proper integrity protections allows an attacker to modify the outer packet and cause the inner, encrypted data to be exposed in plaintext via ICMP messages. The attacks inc...

CVE-2001-0160

CVE-2001-0160 involves Lucent/ORiNOCO WaveLAN wireless cards where the Initialization Vector (IV) values used by WEP are predictable. This weakens the confidentiality of WEP-protected traffic because a remote attacker can build information to decrypt messages. The underlying issue is compromised ...

CVE-2004-0927

ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions...

CVE-2004-1022

Kerio Winroute Firewall before 6.0.7, ServerFirewall before 1.0.1, and MailServer before 6.0.5 use symmetric encryption for user passwords, which allows attackers to decrypt the user database and obtain the passwords by extracting the secret key from within the software...

CVE-2004-1022

Kerio Winroute Firewall before 6.0.7, ServerFirewall before 1.0.1, and MailServer before 6.0.5 use symmetric encryption for user passwords, which allows attackers to decrypt the user database and obtain the passwords by extracting the secret key from within the software...

CVE-2004-1022

Kerio products Kerio WinRoute Firewall (before 6.0.7), ServerFirewall (before 1.0.1), and MailServer (before 6.0.5) store passwords using a symmetric encryption scheme. The vulnerability arises because the secret key is extractable from the software, enabling an attacker to decrypt the user datab...

CVE-2004-0927

CVE-2004-0927 affects Mac OS X ServerAdmin (versions 10.2.8–10.3.5). The issue arises from using the same example self-signed certificate across systems, enabling remote attackers to decrypt sessions. The connected documents corroborate the core vulnerability description across multiple sources (...

Samba < 2.2.7 Unicode Encrypted Password Decryption Overflow

Binary data 1343.prm...

IpSwitch IMail Server &lt;= ver 8.1 User Password Decryption

Hi fellaz, IpSwitch IMail Server version up to 8.1 uses weak encryption algorithm to encrypt its user passwords. Have a look at attached proof of concept tool, which will decrypt user password from local machine instantly. --- G:xploitsimaildecrypt G:xploitsimaildecryptimailpwdump -d --= IpSwitch...

Imailpwdump.cpp

/ IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In order to decrypt user password we need a key. IMail uses usernam...

IPSwitch IMail Server 8.1 - Local Password Decryption Utility

IPSwitch IMail Server 8.1 - Local Password Decryption Utility / IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In...

IPSwitch IMail Server 8.1 - Local Password Decryption Utility

/ IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In order to decrypt user password we need a key. IMail uses usernam...

IPSwitch IMail Server <= 8.1 Local Password Decryption Utility

Exploit for unknown platform in category local exploits ============================================================== IPSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. Th...