EUVD-2006-1382

Malware in sbrugna...

EUVD-2005-3796

Malware in sbrugna...

CVE-2024-34538

Mateso PasswordSafe through 8.13.9.26689 has Weak Cryptography...

CVE-2024-5812 Smart Rule Overwrite Bypass in BeyondInsight PasswordSafe

A low severity vulnerability in BIPS has been identified where an attacker with high privileges or a compromised high privilege account can overwrite Read-Only smart rules via a specially crafted API request...

CVE-2024-5812 Smart Rule Overwrite Bypass in BeyondInsight PasswordSafe

A low severity vulnerability in BIPS has been identified where an attacker with high privileges or a compromised high privilege account can overwrite Read-Only smart rules via a specially crafted API request...

CVE-2024-34538

Mateso PasswordSafe through 8.13.9.26689 has Weak Cryptography...

CVE-2024-34538

CVE-2024-34538 affects Mateso PasswordSafe up to version 8.13.9.26689, which is reported to use weak cryptography. Multiple connected sources (Red Hat, NVD, CVE listing, CNVD, CVE enrichment feeds) corroborate the same payload: weak cryptography as the underlying issue. The CVSSv3.1 vector (AV:N/...

Mateso PasswordSafe 安全漏洞

Mateso PasswordSafe is a password manager from Mateso. A security vulnerability exists in Mateso PasswordSafe 8.13.9.26689 and earlier versions, which stems from the presence of weak encryption in the application...

CVE-2024-34538

Mateso PasswordSafe through 8.13.9.26689 has Weak Cryptography...

CVE-2024-34538

Mateso PasswordSafe through 8.13.9.26689 has Weak Cryptography...

CVE-2006-1378

PasswordSafe 3.0 beta, when running on Windows before XP, uses a weak random number generator C++ rand function during generation of the database encryption key, which makes it easier for attackers to decrypt the database and steal passwords by generating keys for all possible rand seed values an...

Design/Logic Flaw

PasswordSafe 3.0 beta, when running on Windows before XP, uses a weak random number generator C++ rand function during generation of the database encryption key, which makes it easier for attackers to decrypt the database and steal passwords by generating keys for all possible rand seed values an...

CVE-2006-1378

PasswordSafe 3.0 beta, when running on Windows before XP, uses a weak random number generator C++ rand function during generation of the database encryption key, which makes it easier for attackers to decrypt the database and steal passwords by generating keys for all possible rand seed values an...

CVE-2006-1378

CVE-2006-1378 concerns PasswordSafe 3.0 beta running on Windows versions prior to XP, where the database encryption key is generated using the weak C++ rand() RNG. The underlying root cause is the predictability of rand(), which enables an attacker to enumerate possible seed values and, via a kno...

PasswordSafe 3.0 weak random number generator allows key recovery attack

Title : PasswordSafe 3.0 weak random number generator allows key recovery attack Date : March 23, 2006 Product : PasswordSafe 3.0 Discovered by : ElcomSoft Co.Ltd. Overview ====================================================================== PasswordSafe is a program originally written by...

CVE-2005-3801

CounterPane PasswordSafe 1.x and 2.x allows local users to test possible encryption keys against a subset of the stored key data without performing the more expensive key derivation function KDF function, which reduces the search time in brute force attacks...

CVE-2005-3801

CounterPane PasswordSafe 1.x and 2.x allows local users to test possible encryption keys against a subset of the stored key data without performing the more expensive key derivation function KDF function, which reduces the search time in brute force attacks...

CVE-2005-3801

CVE-2005-3801 affects CounterPane PasswordSafe 1.x and 2.x. Local users can test possible encryption keys against a subset of stored key data without performing the full key derivation function (KDF), reducing brute-force search time. This is the concrete vulnerability described in the available ...

PasswordSafe weak cryptography

Key derived from user password with fast algorythm is used as a key for block cypher, making it easy to bruteforce user password...

Schneier's PasswordSafe password validation flaw

Title : Schneier's PasswordSafe password validation flaw Date : November 16, 2005 Product : PasswordSafe 1.x, 2.x Discovered by : ElcomSoft Co.Ltd. Overview ====================================================================== PasswordSafe is a program originally written by security expert Bruce...