Back to search
CVE-2006-1117
Published: Mar 9, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
nCipher firmware before V10, as used by (1) nShield, (2) nForce, (3) netHSM, (4) payShield, (5) SecureDB, (6) DSE200 Document Sealing Engine, (7) Time Source Master Clock (TSMC), and possibly other products, contains certain options that were only intended for testing and not production, which might allow remote attackers to obtain information about encryption keys and crack those keys with less effort than brute force.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2006-0862
vdb-entry
x_refsource_VUPEN
20060309 nCipher Advisory #14: Presence of flaws in firmware security
mailing-list
x_refsource_BUGTRAQ
ncipher-firmware-weak-security(25063)
vdb-entry
x_refsource_XF
1015718
vdb-entry
x_refsource_SECTRACK
17012
vdb-entry
x_refsource_BID
19137
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now