10 matches found
Lightweight Electronic Signatures and Reliable Access Control Included in Sensor Networks to Prevent Cyber Attacks from Modifying Patient Data
Digital terrorism is a major cause of securing patient/healthcare providers data and information. Sensitive topics that may have an impact on a patient's health or even national security include patient health records and information on healthcare providers. Health databases and data sets have be...
SignXML 安全漏洞
SignXML is an open source XML signing and XAdES library for Python from XML-Security. A security vulnerability exists in SignXML versions prior to 4.0.4, which stems from an algorithm obfuscation flaw that could lead to the use of unintended keys to verify signatures...
Usability of Token-Based and Remote Electronic Signatures: a User Experience Study
As electronic signatures e-signatures become increasingly integral to secure digital transactions, understanding their usability and security perception from an end-user perspective has become crucial. This study empirically evaluates and compares two major e-signature systems -- token-based and...
WordPress Qualified Electronic Signatures by eID Easy plugin <= 3.3.0 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin Qualified Electronic Signatures by eID Easy versions = 3.3.0...
WordPress Qualified Electronic Signatures by eID Easy Plugin <= 3.3.0 is vulnerable to Backdoor
Software Qualified Electronic Signatures by eID Easy Type Plugin Vulnerable versions = 3.3.0 Fixed in 3.3.1 OWASP Top 10 A3: Injection Classification Backdoor CVE N/A Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 7c90ad9b98a6 Credits Sansec.io Required privilege...
The vulnerability of the Acrobat Mobile Sign software for working with electronic signatures and document management lies in the incorrect restriction on the path to the restricted catalog. This allows attackers to circumvent existing security restrictions and gain unauthorized access to protected information.
The vulnerability of the Acrobat Mobile Sign software for working with electronic signatures and document management is related to an incorrect limitation on the path name to the restricted access catalog. Exploiting this vulnerability could allow a perpetrator to bypass existing security...
The vulnerability of the Acrobat Mobile Sign software in handling electronic signatures and document management is related to deficiencies in the authentication process. This allows unauthorized users to circumvent existing security restrictions and gain unauthorized access to protected information.
The vulnerability of the Acrobat Mobile Sign software for working with electronic signatures and document management is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions and gain unauthorized acces...
Threat Outbreak Alert RuleID12458: Email Messages Distributing Malicious Software on November 17, 2014
Medium Alert ID: 36438 First Published: 2014 November 17 18:59 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID12458 may contain the following files: Name |...
Ubuntu 4.10 / 5.04 : openssl weak default configuration (USN-179-1)
The current default algorithm for creating 'message digests' electronic signatures for certificates created by openssl is MD5. However, this algorithm is not deemed secure any more, and some practical attacks have been demonstrated which could allow an attacker to forge certificates with a valid...
Mandrake Linux Security Advisory : openssl (MDKSA-2005:179)
Yutaka Oiwa discovered vulnerability potentially affects applications that use the SSL/TLS server implementation provided by OpenSSL. Such applications are affected if they use the option SSLOPMSIESSLV2RSAPADDING. This option is implied by use of SSLOPALL, which is intended to work around various...