Vulnerabilities > CVE-2002-0941 - Unspecified vulnerability in Ncipher Nforce and Nshield
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The ConsoleCallBack class for nCipher running under JRE 1.4.0 and 1.4.0_01, as used by the TrustedCodeTool and possibly other applications, may leak a passphrase when the user aborts an application that is prompting for the passphrase, which could allow attackers to gain privileges.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
Hardware | 1 |