Lucene search
Ubuntu.comUB:CVE-2010-3073HistorySep 17, 2010 - 12:00 a.m.
CVE-2010-3073
2010-09-1700:00:00
ubuntu.com
ubuntu.com
7
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
0.4%
SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle integer data
sizes when constructing headers intended for randomization of
initialization vectors, which makes it easier for local users to obtain
sensitive information by defeating cryptographic protection mechanisms.
Related
nvd
nvd
CVE-2010-3073
2010-09-17 18:00:02
cvelist
cvelist
CVE-2010-3073
2010-09-17 17:46:00
prion
prion
Design/Logic Flaw
2010-09-17 18:00:00
debiancve
debiancve
CVE-2010-3073
2010-09-17 18:00:02
exploitdb
exploitdb
EncFS 1.6.0 - Flawed CBC/CFB Cryptography Implementation
2010-08-26 00:00:00
cve
cve
CVE-2010-3073
2010-09-17 18:00:02
nessus
nessus
openSUSE Security Update : encfs (openSUSE-SU-2010:1028-1)
2011-05-05 00:00:00
Fedora 12 : fuse-encfs-1.7.2-1.fc12 (2010-14254)
2010-09-16 00:00:00
openSUSE Security Update : encfs (openSUSE-SU-2010:1028-1)
2011-05-05 00:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
0.4%
Related for UB:CVE-2010-3073