NuytsTech Security

CVE-2013-4425

by ·

The DICOM listener in OsiriX before 5.8 and before 2.5-MD, when starting up, encrypts the TLS private key file using "SuperSecretPassword" as the hardcoded password, which allows local users to obtain the private key.

Date published : 2013-11-15

http://www.securityfocus.com/bid/63566

http://archives.neohapsis.com/archives/bugtraq/2013-11/0029.html

Tags: