11 matches found
EUVD-2016-0011
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-6298
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier...
jwcrypto lacks the Random Filling protection mechanism
The Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack MMA...
GHSA-WG33-X934-3GHH jwcrypto lacks the Random Filling protection mechanism
The Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack MMA...
CVE-2016-5430
The RSA 1.5 algorithm implementation in the JOSEJWE class in JWE.php in jose-php before 2.2.1 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack MMA...
CVE-2016-5430
The RSA 1.5 algorithm implementation in the JOSEJWE class in JWE.php in jose-php before 2.2.1 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack MMA...
CVE-2016-5430
The CVE-2016-5430 entry affects jose-php prior to 2.2.1, where the RSA-1.5 implementation in JOSE_JWE/JWE.php lacks a Random Filling protection mechanism. This omission enables a remote attacker to obtain plaintext data via a Million Message Attack (MMA). Affected component: jose-php’s JWE.php wi...
CVE-2016-6298
The Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack MMA...
PYSEC-2016-4
The Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack MMA...
CVE-2016-6298
The Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack MMA...
CVE-2016-6298
The CVE-2016-6298 issue affects the jwcrypto Python package, specifically the RSA 1.5 implementation (the _Rsa15 class in jwa.py). Before 0.3.2, it lacks the Random Filling protection mechanism, enabling a remote attacker to potentially obtain cleartext data via a Million Message Attack (MMA). Th...