Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2036

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2006-2036
Last Modified 05 Sep 2008 05:03:29
Published 25 Apr 2006 08:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-2036

Summary

iOpus Secure Email Attachments (SEA), probably 1.0, does not properly handle passwords that consist of repetitions of a substring, which allows attackers to decrypt files by entering only the substring.

Vulnerable Systems

Application

  • Iopus Secure Email Attachments 1.0


References

BID - 17656

BUGTRAQ - 20060422 ADVISORY FOR IOPUS SECURE EMAIL ATTACHMENTS

XF - iopus-insecure-passwords(26266)

BUGTRAQ - 20060425 Re: ADVISORY FOR IOPUS SECURE EMAIL ATTACHMENTS

SECTRACK - 1015980

SECUNIA - 19771


Last Updated: 27 May 2016 10:42:18