RSS   Vulnerabilities for 'Openpgp'   RSS

2005-05-02
 
CVE-2005-0366

 

 
The integrity check feature in OpenPGP, when handling a message that was encrypted using cipher feedback (CFB) mode, allows remote attackers to recover part of the plaintext via a chosen-ciphertext attack when the first 2 bytes of a message block are known, and an oracle or other mechanism is available to determine whether an integrity check failed.

 
2004-08-18
 
CVE-2004-0230

CWE-Other
 

 
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.

 


Copyright 2024, cxsecurity.com

 

Back to Top