SSL_Cipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-09-17T17:46:00
Updated: 2011-01-15T10:00:00
Reserved: 2010-08-20T00:00:00
Link: CVE-2010-3074
JSON object: View
NVD Information
Status : Modified
Published: 2010-09-17T18:00:02.667
Modified: 2011-01-14T06:46:32.717
Link: CVE-2010-3074
JSON object: View
Redhat Information
No data.
CWE