52 matches found
JVN#58909026: HIBUN Confidential File Decryption program may insecurely load Dynamic Link Libraries
HIBUN Confidential File Decryption program provided by Hitachi Solutions, Ltd. contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privileges of the user running HIBUN Confidential File...
JVN#55516206: HIBUN Confidential File Decryption program may insecurely load Dynamic Link Libraries
HIBUN Confidential File Decryption program provided by Hitachi Solutions, Ltd. contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privileges of the user running HIBUN Confidential File...
Available Tools Making Dent in WannaCry Encryption
Tools are beginning to emerge that can be used to start the process of recovering files encrypted by WannaCry on some Windows systems. This takes on extra urgency because today marks one week from the initial outbreak, and files encrypted during that first wave are on the clock and close to being...
WannaCry Ransomware Decryption Tool Released; Unlock Files Without Paying Ransom
If your PC has been infected by WannaCry – the ransomware that wreaked havoc across the world last Friday – you might be lucky to get your locked files back without paying the ransom of $300 to the cyber criminals. Adrien Guinet, a French security researcher from Quarkslab, has discovered a way t...
Design/Logic Flaw
An issue was discovered in certain Apple products. iOS before 10.1 is affected. The issue involves the "iTunes Backup" component, which improperly hashes passwords, making it easier to decrypt files...
CVE-2016-4685
An issue was discovered in certain Apple products. iOS before 10.1 is affected. The issue involves the "iTunes Backup" component, which improperly hashes passwords, making it easier to decrypt files...
CVE-2016-4685
CVE-2016-4685 affects iOS versions before 10.1, in the iTunes Backup component where a weak password hashing method was used for encrypted backups, enabling easier recovery of the backup password and thus decryption of files. Apple’s security content for iOS 10.1 states the weak hash was removed,...
Technicolor TC7200 Modem / Router STD6.02.11 - Multiple Vulnerabilities
Exploit for hardware platform in category web applications ''' Technicolor TC7200 modem/router multiple vulnerabilities -------------------------------------------------------- Platforms / Firmware confirmed affected: - Technicolor TC7200, STD6.02.11 - Product page:...
Hardcoded credentials
iOpus Secure Email Attachments SEA, probably 1.0, does not properly handle passwords that consist of repetitions of a substring, which allows attackers to decrypt files by entering only the substring...
CVE-2006-2036
iOpus Secure Email Attachments SEA, probably 1.0, does not properly handle passwords that consist of repetitions of a substring, which allows attackers to decrypt files by entering only the substring...
Слабость EFS в Windows 2000
При использовании Encrypted File System в Windows 2000 возможно дешифрование файлов, т.к. локальная база данных безопасности хранится на диске. Для предотвращения этого необходимо использовать syskey с паролем или хранением ключа на дискете...
IBM Websphere 2.03.0 - ikeyman Weak Encrypted Password
IBM Websphere 2.03.0 - ikeyman Weak Encrypted Password source: https://www.securityfocus.com/bid/1763/info IBM WebSphere ships with a tool called 'ikeyman' that encrypts server certificates/key pairs when the IBM HTTP Server and SSL connections are enabled. Ikeyman stores the password in a stash...