recover software vulnerabilities
vulnerabilities.aspcode.net
Searching recover software vulnerabilities
Microsoft Windows 2000 Encrypted File System do
Microsoft
|
Windows
|
Microsoft Windows 2000 Encrypted File System does not properly destroy backups of files that are encrypted, which allows a local attacker to recover the text of encrypted files.
Zetetic Secure Tool for Recalling Important Pas
Recalling
|
Important
|
Passwords
|
Zetetic
|
Secure
|
Tool
|
Zetetic Secure Tool for Recalling Important Passwords (STRIP) 0.5 and earlier for the PalmOS allows a local attacker to recover passwords via a brute force attack. This attack is made feasible by STRIP's use of SysRandom, which is seeded by TimeGetTicks, and an implementation flaw which vastly reduces the password 'search space'.
BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 d
BestCrypt
|
BCWipe
|
BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
East-Tec Eraser 2002 does not clear Windows alt
East-Tec
|
Eraser
|
East-Tec Eraser 2002 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
Eraser 5.3 does not clear Windows alternate dat
information
|
sensitive
|
attackers
|
alternate
|
attached
|
supposed
|
systems
|
recover
|
Windows
|
deleted
|
streams
|
allows
|
Eraser
|
which
|
files
|
clear
|
data
|
does
|
file
|
NTFS
|
not
|
Eraser 5.3 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
PGP 6.x and 7.x does not clear Windows alternat
information
|
alternate
|
sensitive
|
attackers
|
attached
|
supposed
|
recover
|
systems
|
Windows
|
deleted
|
streams
|
allows
|
which
|
files
|
clear
|
data
|
does
|
file
|
NTFS
|
PGP
|
not
|
PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
SecureClean 3 build 2.0 does not clear Windows
information
|
SecureClean
|
alternate
|
attackers
|
sensitive
|
attached
|
supposed
|
deleted
|
systems
|
Windows
|
recover
|
streams
|
allows
|
which
|
files
|
clear
|
build
|
does
|
NTFS
|
file
|
data
|
not
|
SecureClean 3 build 2.0 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
The data-overwrite capability of ButtUglySoftwa
ButtUglySoftware
|
data-overwrite
|
CleanCache
|
capability
|
The data-overwrite capability of ButtUglySoftware CleanCache 2.19 does not properly overwrite data in files, which allows attackers to recover the data.
helvis 1.8h2_1 and earlier allows local users t
recover
|
program
|
earlier
|
18h2_1
|
elvrec
|
setuid
|
allows
|
helvis
|
other
|
users
|
local
|
files
|
read
|
via
|
helvis 1.8h2_1 and earlier allows local users to recover and read the files of other users via the elvrec setuid program.
The integrity check feature in OpenPGP, when ha
encrypted
|
integrity
|
handling
|
feedback
|
feature
|
message
|
OpenPGP
|
cipher
|
check
|
using
|
The integrity check feature in OpenPGP, when handling a message that was encrypted using cipher feedback (CFB) mode, allows remote attackers to recover part of the plaintext via a chosen-ciphertext attack when the first 2 bytes of a message block are known, and an oracle or other mechanism is available to determine whether an integrity check failed.
Computer Associates (CA) Unicenter Asset Manage
Associates
|
Computer
|
Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 does not properly initialize the "Change Credentials for Database" window, which allows local users to recover the SQL Admin password via certain methods.
The design of Advanced Encryption Standard (AES
Encryption
|
Standard
|
Advanced
|
design
|
The design of Advanced Encryption Standard (AES), aka Rijndael, allows remote attackers to recover AES keys via timing attacks on S-box lookups, which are difficult to perform in constant time in AES implementations.
Directory traversal vulnerability in resetpw.ph
phpBannerExchange
|
vulnerability
|
resetpwphp
|
arbitrary
|
attackers
|
Directory
|
traversal
|
eschewnet
|
versions
|
earlier
|
remote
|
allows
|
before
|
Update
|
files
|
other
|
read
|
via
|
Directory traversal vulnerability in resetpw.php in eschew.net phpBannerExchange 2.0 and earlier, and other versions before 2.0 Update 5, allows remote attackers to read arbitrary files via a .. (dot dot) in the email parameter during a "Recover password" operation (recoverpw.php).
/sbin/passwd in HP-UX B.11.00, B.11.11, and B.1
/sbin/passwd
|
before
|
B1123
|
B1111
|
HP-UX
|
B1100
|
/sbin/passwd in HP-UX B.11.00, B.11.11, and B.11.23 before Sunday, March 26, 2006 "does not recover gracefully from some error conditions," which allows local users to cause a denial of service.
The centralized management feature for Utimaco
cryptographic
|
configuration
|
centralized
|
hard-coded
|
management
|
executable
|
attackers
|
Safeguard
|
encrypted
|
programs
|
Utimaco
|
feature
|
decrypt
|
recover
|
allows
|
stores
|
drive
|
which
|
files
|
disk
|
keys
|
The centralized management feature for Utimaco Safeguard stores hard-coded cryptographic keys in executable programs for encrypted configuration files, which allows attackers to recover the keys from the configuration files and decrypt the disk drive.
Software vulnerabilities results 1 to 16 of 16
Page:
1