The DICOM listener in OsiriX before 5.8 and before 2.5-MD, when starting up, encrypts the TLS private key file using "SuperSecretPassword" as the hardcoded password, which allows local users to obtain the private key.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2013-11-15T18:16:00
Updated: 2017-08-28T12:57:01
Reserved: 2013-06-12T00:00:00
Link: CVE-2013-4425
JSON object: View
NVD Information
Status : Modified
Published: 2013-11-18T02:55:07.687
Modified: 2017-08-29T01:33:37.810
Link: CVE-2013-4425
JSON object: View
Redhat Information
No data.
CWE