Archive for the ‘Encryption’ Category
Bugtraq: CORELAN-10-009 : Ipswitch IMAIL 11.01 multiple vulnerabilities (reversible encryption + weak ACL)
Friday, February 5th, 2010Vuln: Cisco IOS Specially Crafted Encryption Packet Denial of Service Vulnerability
Wednesday, September 23rd, 2009Bugtraq: Advisory: Crypto backdoor in Qnap storage devices (CVE-2009-3200)
Friday, September 18th, 2009Vuln: Linksys BEFVP41 Key Truncation Encryption Weakening Vulnerability
Saturday, July 11th, 2009Vuln: Sun Solaris Ultra-SPARC T2 Crypto Provider Device Driver Local Denial Of Service Vulnerability
Thursday, July 9th, 2009News: OpenSSH chink bares encrypted data packets
Friday, May 22nd, 2009fwknop-1.9.3.tar.gz
Wednesday, April 9th, 2008
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpc
greenbow-memory.txt
Wednesday, April 9th, 2008
TheGreenBow IPSec VPN client version 4.10.010 suffers from a vulnerability where login credentials are stored in the clear in memory.
blogpixel-backup.txt
Wednesday, April 9th, 2008
Blog PixelMotion suffers from an arbitrary database backup vulnerability in sauvBase.php.