CVE-2003-1417

nCipher Support Software 6.00, when using generatekey KeySafe to import keys, does not delete the temporary copies of the key, which may allow local users to gain access to the key by reading the (1) key.pem or (2) key.der files.
Configurations

Configuration 1 (hide)

cpe:2.3:a:ncipher:support_software:6.00:*:*:*:*:*:*:*

History

20 Nov 2024, 23:47

Type Values Removed Values Added
References () http://marc.info/?l=bugtraq&m=104619088801750&w=2 - () http://marc.info/?l=bugtraq&m=104619088801750&w=2 -
References () http://www.ncipher.com/support/advisories/advisory7_keyduplicates.html - () http://www.ncipher.com/support/advisories/advisory7_keyduplicates.html -
References () http://www.securityfocus.com/bid/6927 - () http://www.securityfocus.com/bid/6927 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/11422 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/11422 -

Information

Published : 2003-12-31 05:00

Updated : 2024-11-20 23:47


NVD link : CVE-2003-1417

Mitre link : CVE-2003-1417

CVE.ORG link : CVE-2003-1417


JSON object : View

Products Affected

ncipher

  • support_software
CWE
CWE-255

Credentials Management Errors