369 matches found
Buffer overflow
Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services IIS, provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State aka VIEWSTATE for...
Research Finds Crystal Material For Chip Security
Researchers at Florida State University have discovered crystals that could lead to super security chips. The security chips could store encrypted data written two different ways — electrically and magnetically — making extraction of the data more complex and so more difficult for attackers to...
CVE-2008-2780
The Anubis aka Anubis+Ripe160 plugin before 1.3 for encrypt stores the unencrypted file's size in cleartext in the header of the encrypted file, which allows attackers to distinguish between encrypted data and random padding at the end of the encrypted file...
CVE-2004-2703
The CVE-2004-2703 entry concerns Clearswift MIMEsweeper 5.0.5, upgraded from MAILsweeper SMTP versions, where remote data that is encrypted within a mail message can bypass scanning and be marked as Clean rather than Encrypted. This describes the affected product/function (MIMEsweeper 5.0.5 after...
Information disclosure
RemoteDocs R-Viewer before 1.6.3768 stores encrypted RDZ file data in unencrypted temporary files, which allows local users to obtain sensitive information by reading the temporary files...
CVE-2007-4751
RemoteDocs R-Viewer before 1.6.3768 stores encrypted RDZ file data in unencrypted temporary files, which allows local users to obtain sensitive information by reading the temporary files...
Symantec On-Demand Agent / Symantec On-Demand Protection protection bypass
It's possible to access encrypted data...
CVE-2004-2703
Clearswift MIMEsweeper 5.0.5, when it has been upgraded from MAILsweeper for SMTP version 4.3 or MAILsweeper Business Suite I or II, allows remote attackers to bypass scanning by including encrypted data in a mail message, which causes the message to be marked as "Clean" instead of "Encrypted"...
NTFS and PGP interact to expose EFS encrypted data
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NTFS and PGP interact to expose EFS encrypted data c 2002 Ry Jones, Airgap Networks. Summary: NTFS, a feature of Windows XP, supports an "encrypted" attribute. PGP 7.0.3 Freeware, a product of Network Associates, supports wiping files as they are...