Vulnerabilities > CVE-2006-2036 - Unspecified vulnerability in Iopus Secure Email Attachments 1.0

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

iopus

NVD

Published: 2006-04-26

Updated: 2018-10-18

Summary

iOpus Secure Email Attachments (SEA), probably 1.0, does not properly handle passwords that consist of repetitions of a substring, which allows attackers to decrypt files by entering only the substring.

Vulnerable Configurations

Part	Description	Count
Application	Iopus Iopus Secure Email Attachments 1.0	1

References

http://secunia.com/advisories/19771
http://securitytracker.com/id?1015980
http://www.securityfocus.com/archive/1/431904/100/0/threaded
http://www.securityfocus.com/archive/1/431989/100/0/threaded
http://www.securityfocus.com/bid/17656
https://exchange.xforce.ibmcloud.com/vulnerabilities/26266