12 matches found
EUVD-2002-0928
Malware in sbrugna...
EUVD-2002-0929
Malware in sbrugna...
EUVD-2014-6107
Malware in sbrugna...
CVE-2014-6221
The MSCAPI/MSCNG interface implementation in GSKit in IBM Rational ClearCase 7.1.2.x before 7.1.2.17, 8.0.0.x before 8.0.0.14, and 8.0.1.x before 8.0.1.7 does not properly generate random numbers, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via...
CVE-2014-6221
The MSCAPI/MSCNG interface implementation in GSKit in IBM Rational ClearCase 7.1.2.x before 7.1.2.17, 8.0.0.x before 8.0.0.14, and 8.0.1.x before 8.0.1.7 does not properly generate random numbers, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via...
CVE-2014-6221
Summary of CVE-2014-6221 (GSKit random data generation) : The GSKit MSCAPI/MSCNG interface does not generate cryptographically random data, enabling potential confidentiality/integrity compromise. Affected products and contexts include IBM GSKit in Rational ClearCase (various 7.1.2.x, 8.0.0.x, 8....
CVE-2002-0940
domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protection level than specified by the user module protection only...
CVE-2002-0939
The Install Wizard for nCipher MSCAPI CSP 5.50 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protection level than specified by the user module protection only...
CVE-2002-0940
domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protection level than specified by the user module protection only...
CVE-2002-0940
This CVE concerns domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54, where the software does not use Operator Card Set protected keys when the user requests them if the Operator Card Set has not been generated. The outcome is a lower protection level than the user-specified module protecti...
CVE-2002-0939
The CVE applies to the Install Wizard for nCipher MSCAPI CSP 5.50. The issue is that when a user requests Operator Card Set protected keys but does not actually generate the Operator Card Set, the wizard ends up using only module protection rather than the higher protection level that the user in...
nCipher Advisory #3: MSCAPI keys erroneously module-protected - update
nCipher Security Advisory No. 3 | Windows 2000 keys unexpectedly only module-protected | ==================================================== | | UPDATED - VERSION 2 | Changes are marked with |' at the right. | | | SUMMARY ======= In certain circumstances, the nCipher MSCAPI CSP Install Wizard...