Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4578

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2012-4578
Last Modified 01 Mar 2013 11:45:50
Published 21 Aug 2012 03:55:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2012-4578

Summary

The geli encryption provider 7 before r239184 on FreeBSD 10 uses a weak Master Key, which makes it easier for local users to defeat a cryptographic protection mechanism via a brute-force attack.

Vulnerable Systems

Application

  • Pawel Jakub Dawidek Geli 4

  • Pawel Jakub Dawidek Geli 7


References

MLIST - [freebsd-security] 20120820 [HEADSUP] geli(4) weak master key generation on -CURRENT

XF - freebsd-geli-weak-security(78057)


Last Updated: 27 May 2016 10:53:36