7 matches found
EUVD-2015-3964
Malware in sbrugna...
Code injection
Netlock Mokka before 2.7.8.1204 allows remote attackers to perform XML signature wrapping attacks via an e-akta signed document with a ds:Object node with a crafted payload prepended to a valid ds:Object...
CVE-2015-3932
Netlock Mokka before 2.7.8.1204 allows remote attackers to perform XML signature wrapping attacks via an e-akta signed document with a ds:Object node with a crafted payload prepended to a valid ds:Object...
CVE-2015-3932
Netlock Mokka before 2.7.8.1204 allows remote attackers to perform XML signature wrapping attacks via an e-akta signed document with a ds:Object node with a crafted payload prepended to a valid ds:Object...
CVE-2015-3932
Netlock Mokka before 2.7.8.1204 is affected by an XML signature wrapping vulnerability. An attacker can insert a crafted ds:Object payload into an e-akta signed document, causing signature validation to misrepresent the content. Exploitation context is not detailed in the provided documents, and ...
Netlock Mokka XML Digital Signature Forgery Security Bypass Vulnerability
Netlock Mokka is a suite of free authentication applications that use multiple authentication processes. Netlock Mokka fails to validate the signature of specially crafted XML files, allowing an attacker to bypass XML digital signature validation by performing a man-in-the-middle attack that forg...
Microsec e-Szigno / Netlock Mokka content spoofing
Signed content spoofing...