CVE-2002-0940

domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protection level than specified by the user (module protection only).
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ncipher:mscapi_csp:5.50:*:*:*:*:*:*:*
cpe:2.3:a:ncipher:mscapi_csp:5.54:*:*:*:*:*:*:*

History

20 Nov 2024, 23:40

Type Values Removed Values Added
References () http://archives.neohapsis.com/archives/bugtraq/2002-05/0103.html - () http://archives.neohapsis.com/archives/bugtraq/2002-05/0103.html -
References () http://online.securityfocus.com/archive/1/277241 - () http://online.securityfocus.com/archive/1/277241 -
References () http://www.securityfocus.com/bid/4729 - () http://www.securityfocus.com/bid/4729 -

Information

Published : 2002-10-04 04:00

Updated : 2024-11-20 23:40


NVD link : CVE-2002-0940

Mitre link : CVE-2002-0940

CVE.ORG link : CVE-2002-0940


JSON object : View

Products Affected

ncipher

  • mscapi_csp