RSS   Vulnerabilities for 'Beaker'   RSS

2012-09-15
 
CVE-2012-3458

CWE-310
 

 
Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.

 

 >>> Vendor: Python 24 Products
Python
Virtualenv
Beaker
Keyring
Setuptools
RPLY
Pyxdg
Pillow
Requests
PIP
Tgcaptcha2
Urllib3
Python priority library
Hpack
Hyper
Openpyxl
Tablib
Simplejson
Pykerberos
Pypiserver
Python-gnupg
RSA
Novajoin
Pyxml


Copyright 2019, cxsecurity.com

 

Back to Top