Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:60754
HistoryApr 24, 2013 - 12:00 a.m.

Sophos Safeguard Enterprise本地安全限制绕过漏洞(CVE-2012-4736)

2013-04-2400:00:00
Root
www.seebug.org
18

0.001 Low

EPSS

Percentile

23.9%

JSON

BUGTRAQ ID: 59311
CVE(CAN) ID: CVE-2012-4736

Sophos Safeguard Enterprise是磁盘加密解决方案。

SafeGuard Enterprise 6.0 及其他版本内的Device Encryption Client组件存在安全漏洞,该漏洞源于启用基于卷的加密策略并使用用户定义的密钥时,组件没有正确地阻止使用exFAT USB闪存盘,本地用户可利用此漏洞通过多次removal和reattach操作,绕过目标访问限制并复制敏感信息到设备。
0
Sophos Safeguard Enterprise
厂商补丁:

Sophos

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.sophos.com/en-us/products/encryption/safeguard-enterprise.aspx

Related

prion 1
cve 1
nvd 1
cvelist 1
prion
prion
Design/Logic Flaw
2012-08-29 22:55:00
cve
cve
CVE-2012-4736
2012-08-29 22:55:01
nvd
nvd
CVE-2012-4736
2012-08-29 22:55:01
cvelist
cvelist
CVE-2012-4736
2012-08-29 22:00:00

0.001 Low

EPSS

Percentile

23.9%

JSON
Related for SSV:60754
prion1cve1nvd1cvelist1