NVIDIA SHIELD TV Security Engine Deterministic Random Bit Generator Information Disclosure Vulnerability

NVIDIA SHIELD TV is a gaming console device from NVIDIA.Security Engine is one of the security engines.Deterministic Random Bit Generator DRBG is one of the... A security vulnerability exists in DRBG of Security Engine in NVIDIA SHIELD TV SE 6.2 and prior versions, which arises from the program...

CVE-2017-6284

NVIDIA Security Engine contains a vulnerability in the Deterministic Random Bit Generator DRBG where the DRBG does not properly initialize and store or transmits sensitive data using a weakened encryption scheme that is unable to protect sensitive data which may lead to information disclosure.Thi...

Design/Logic Flaw

NVIDIA Security Engine contains a vulnerability in the Deterministic Random Bit Generator DRBG where the DRBG does not properly initialize and store or transmits sensitive data using a weakened encryption scheme that is unable to protect sensitive data which may lead to information disclosure.Thi...

A Death Match of Domain Generation Algorithms

By Hongliang Liu and Yuriy Yuzifovich Originally posted on December 29, 2017 Today's post is all about DGA's Domain Generation Algorithms: what they are, why they came into existence, what are some use cases where they are used, and, most importantly - how to detect and block them. As we will...

Code injection

The NetBSD qsort function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort to deterministically recurse N/4 times. This allows attackers to consume arbitrary amounts of stack memory and manipulate stack memory to assist in...

The vulnerability of the OpenSSL software allows a malicious attacker to compromise the confidentiality of protected information.

The vulnerability exists in the SSL protocol for OpenSSL due to the use of non-deterministic padding for CBC encryption block chaining of the encryption text. Exploiting this vulnerability allows a malicious actor to obtain unencrypted data by using a padding prediction attack, known as POODLE...

The vulnerability of Cisco VPN Client software allows a malicious individual to increase their privileges.

The vulnerability in dne2000.sys of Citrix Deterministic Network Enhancer for Cisco VPN Client, Blue Coat WinProxy, SafeNet SoftRemote, and HighAssurance Remote allows local users to elevate their privileges by using a specially crafted request called DNEIOCTL DeviceIoControl to the \.\DNE device...

ARRIS cable modems generate passwords deterministically and contain XSS and CSRF vulnerabilities

Overview Multiple models of ARRIS cable modems contain multiple, deterministically generated backdoor passwords, as well as multiple cross-site scripting XSS and cross-site request forgery CSRF vulnerabilities. Description CWE-255: Credentials Management - CVE-2009-5149The 'password of the day'...

Gentoo Security Advisory GLSA 201408-14

Gentoo Linux Local Security Checks GLSA 201408-14 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

From inter to intra: gaining reliability

Posted by Chris Evans, avoider of crossing heap lines. Part 2 of 4. In the first post in this series, we concluded with a traditional exploit for Adobe Flash bug 324, and noted that it could never be 100% reliable. We also challenged ourselves to do better! Is there some way we can leverage the...

What is a "good" memory corruption vulnerability?

Posted by Chris Evans, register whisperer. Part 1 of 4. There are a lot of memory corruption vulnerabilities in software, but not all are created equal. To a certain degree, the “usefulness” of a given memory corruption vulnerability is determined by how reliably it might be exploited. In some...

Cisco Releases Open Source FNR Cipher

Cisco has released a new open-source block cipher called FNR that is designed for encrypting small chunks of data, such as MAC addresses or IP addresses. The cipher is still in the experimental stage, but Cisco has released the source code and a demo application. The company suggests that the new...

Default configuration

The default configuration of EMC RSA BSAFE Toolkits and RSA Data Protection Manager DPM 20130918 uses the Dual Elliptic Curve Deterministic Random Bit Generation DualECDRBG algorithm, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by leveraging...

CVE-2013-6078

The default configuration of EMC RSA BSAFE Toolkits and RSA Data Protection Manager DPM 20130918 uses the Dual Elliptic Curve Deterministic Random Bit Generation DualECDRBG algorithm, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by leveraging...

NIST Removes Dual_EC_DRBG Random Number Generator from Recommendations

The National Institute of Standards and Technology NIST has announced to abandon the controversial Dual Elliptic Curve Deterministic Random Bit Generator, better known as DualECDRBG in the wake of allegations that the National Security Agency. Back in December, Edward Snowden leaks revealed that...

Cryptanalysis Remains for TrueCrypt Audit

Phase two of the TrueCrypt audit figures to be a labor-intensive, largely manual cryptanalysis, according to the two experts behind the Open Crypto Audit Project OCAP. Matthew Green, crypto expert and professor at Johns Hopkins University, said a small team of experts will have to, by hand, exami...

TrueCrypt Open Source License Audit Bringing Clarity

The list of objectors to the TrueCrypt open source license is a long one and includes some popular distributions such as Debian, Fedora—and by extension Red Hat. In fact, the wrangling over the TrueCrypt license dates back as far as 2006, long before there were serious inquiries as to the...

CVE-2007-6755

The NIST SP 800-90A default statement of the Dual Elliptic Curve Deterministic Random Bit Generation DualECDRBG algorithm contains point Q constants with a possible relationship to certain "skeleton key" values, which might allow context-dependent attackers to defeat cryptographic protection...

CVE-2007-6755

The NIST SP 800-90A default statement of the Dual Elliptic Curve Deterministic Random Bit Generation DualECDRBG algorithm contains point Q constants with a possible relationship to certain "skeleton key" values, which might allow context-dependent attackers to defeat cryptographic protection...

CVE-2007-6755

The NIST SP 800-90A default statement of the Dual Elliptic Curve Deterministic Random Bit Generation DualECDRBG algorithm contains point Q constants with a possible relationship to certain "skeleton key" values, which might allow context-dependent attackers to defeat cryptographic protection...