Vulnerabilities > CVE-2001-0081 - Unspecified vulnerability in Ncipher

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

ncipher

NVD

Published: 2001-02-12

Updated: 2017-10-10

Summary

swinit in nCipher does not properly disable the Operator Card Set recovery feature even when explicitly disabled by the user, which could allow attackers to gain access to application keys.

Vulnerable Configurations

Part	Description	Count
Application	Ncipher Ncipher Ncipher *	1

References

http://active.ncipher.com/updates/advisory.txt
http://archives.neohapsis.com/archives/bugtraq/2000-12/0152.html
http://www.osvdb.org/4849
https://exchange.xforce.ibmcloud.com/vulnerabilities/5999