Lucene search
K

47 matches found

CERT
CERT
added 2005/07/13 12:0 a.m.24 views

WebEOC implements weak algorithms to encrypt sensitive information

Overview WebEOC uses weak cryptographic algorithms to encrypt sensitive information. Description WebEOC is a web-based crisis information management application that provides functions to gather, coordinate, and disseminate information between emergency personnel and Emergency Operations Centers...

7.5CVSS7.4AI score0.00797EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/02/16 12:0 a.m.30 views

SHA-1 Broken

HA-1 Broken SHA-1 has been broken. Not a reduced-round version. Not a simplified version. The real thing. The research team of Xiaoyun Wang, Yiqun Lisa Yin, and Hongbo Yu mostly from Shandong University in China have been quietly circulating a paper describing their results: collisions in the the...

1.4AI score
Exploits0
CERT
CERT
added 2002/12/06 12:0 a.m.39 views

Microsoft Windows Remote Desktop Protocol (RDP) uses weak algorithm for encrypting packets

Overview Microsoft Windows Remote Desktop Protocol RDP uses a weak algorithm for encrypting packets. Description Microsoft describes RDP as follows.RDP is based on, and is an extension of, the T.120 protocol family standards. It is a multichannel-capable protocol that allows for separate virtual...

5CVSS6.1AI score0.24001EPSS
Exploits0References5
CERT
CERT
added 2001/11/15 12:0 a.m.32 views

Syskey reuses keystream

Overview Versions of SYSKEY in use prior to December, 1999 leave the SAM database vulnerable to cryptanalytic attacks. Description SYSKEY is a utility introduced in Microsoft Windows NT 4.0 service pack 3 to provide strong cryptographic protection to the SAM password database. The protection SYSK...

5CVSS6AI score0.07194EPSS
Exploits0References6
NVD
NVD
added 2001/06/27 4:0 a.m.14 views

CVE-2001-0381

The OpenPGP PGP standard allows an attacker to determine the private signature key via a cryptanalytic attack in which the attacker alters the encrypted private key file and captures a single message signed with the signature key...

4.6CVSS6.4AI score0.00374EPSS
Exploits0References8
Cvelist
Cvelist
added 2001/05/24 4:0 a.m.21 views

CVE-2001-0381

The OpenPGP PGP standard allows an attacker to determine the private signature key via a cryptanalytic attack in which the attacker alters the encrypted private key file and captures a single message signed with the signature key...

6.4AI score0.00374EPSS
Exploits0References8
CVE
CVE
added 2001/05/24 4:0 a.m.40 views

CVE-2001-0381

The CVE-2001-0381 entry describes a vulnerability in the OpenPGP/PGP standard where an attacker can determine the private signature key through a cryptanalytic attack that involves modifying the encrypted private key file and then signing a single message. The available documents identify the aff...

4.6CVSS6.8AI score0.00374EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder