Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0081

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0081
Last Modified 07 Mar 2011 09:04:35
Published 12 Feb 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0081

Summary

swinit in nCipher does not properly disable the Operator Card Set recovery feature even when explicitly disabled by the user, which could allow attackers to gain access to application keys.

Vulnerable Systems

Application

  • Ncipher


References

BUGTRAQ - 20001212 nCipher Security Advisory: Operator Cards unexpectedly recoverable

CONFIRM - http://active.ncipher.com/updates/advisory.txt

XF - ncipher-recover-operator-cards(5999)

OSVDB - 4849


Last Updated: 27 May 2016 10:36:08