Vulnerabilities > CVE-2015-2987 - Code vulnerability in Type74 ED

CVSS 2.6 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

high complexity

type74

CWE-17

NVD

Published: 2015-08-28

Updated: 2015-08-31

Summary

Type74 ED before 4.0 misuses 128-bit ECB encryption for small files, which makes it easier for attackers to obtain plaintext data via differential cryptanalysis of a file with an original length smaller than 128 bits.

Vulnerable Configurations

Part	Description	Count
Application	Type74 Type74 ED *	1

Common Weakness Enumeration (CWE)

CWE-17 - Code

References

http://jvn.jp/en/jp/JVN91474878/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000119
http://type74.org/edman5-1.php
http://type74org.blog14.fc2.com/blog-entry-1384.html