Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown

CVE-2003-1392

Disclosure Date: December 31, 2003 (last updated February 22, 2025)
CryptoBuddy 1.0 and 1.2 does not use the user-supplied passphrase to encrypt data, which could allow local users to use their own passphrase to decrypt the data.
0
0
Attacker Value
Unknown

CVE-2003-1389

Disclosure Date: December 31, 2003 (last updated February 22, 2025)
RTS CryptoBuddy 1.2 and earlier truncates long passphrases without warning the user, which may make it easier to conduct certain brute force guessing attacks.
0
0
Attacker Value
Unknown

CVE-2003-1390

Disclosure Date: December 31, 2003 (last updated February 22, 2025)
RTS CryptoBuddy 1.2 and earlier stores bytes 53 through 55 of a 55-byte passphrase in plaintext, which makes it easier for local users to guess the passphrase.
0
0
Attacker Value
Unknown

CVE-2003-1391

Disclosure Date: December 31, 2003 (last updated February 22, 2025)
RTS CryptoBuddy 1.0 and 1.2 uses a weak encryption algorithm for the passphrase and generates predictable keys, which makes it easier for attackers to guess the passphrase.
0
0