EncFS 1.6.0 – Flawed CBC/CFB Cryptography Implementation

• Exploit Database
• 71 阅读

• 作者： Micha Riser
  日期： 2010-08-26
• 类别：

  • local
  平台：

  • linux
• 来源：https://www.exploit-db.com/exploits/34537/

• source: https://www.securityfocus.com/bid/42779/info
  
  EncFS is prone to design errors in its cryptographic implementation.
  
  Three flaws have been identified that contribute to a weakening of the protections provided under CBC/CFB cipher mode.
  
  Attackers may leverage these weaknesses to attack encrypted files through watermarking or other techniques. Successful attacks may disclose sensitive information. 
  
  https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/34537.tar.gz