Vulnerabilities

CVE-2006-1116

by Fred · 09/03/2006

The CBC-MAC integrity functions in the nCipher nCore API before 2.18 transmit the initialization vector IV as part of a message when the implementation uses a non-zero IV, which allows remote attackers to bypass integrity checks and modify messages without being detected.

Date published : 2006-03-09

http://www.securityfocus.com/bid/17011

http://www.securityfocus.com/archive/1/427150/100/0/threaded

Similar

Tags: Cybersecurity Alert