CVE-2012-3458

Опубликовано: 15 сент. 2012

Источник: debian

Описание

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
beaker	fixed	1.6.3-1.1		package

Связанные уязвимости

CVE-2012-3458

ubuntu

больше 13 лет назад

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.

CVE-2012-3458

redhat

больше 13 лет назад

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.

CVE-2012-3458

nvd

больше 13 лет назад

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.

GHSA-39vm-p9mr-4r27

CVSS3: 5.3

github

больше 3 лет назад

Beaker Sensitive Information Disclosure vulnerability