Symantec Scan Engine 5.0.0.24, and possibly other versions before 5.1.0.7, uses the same private DSA key for each installation, which allows remote attackers to conduct man-in-the-middle attacks and decrypt communications.
References
Configurations
History
No history.
Information
Published : 2006-04-25 01:02
Updated : 2024-02-28 10:42
NVD link : CVE-2006-0231
Mitre link : CVE-2006-0231
CVE.ORG link : CVE-2006-0231
JSON object : View
Products Affected
symantec
- antivirus_scan_engine
CWE