SSL_Cipher.cpp in EncFS prior to 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
arg0 encfs 1.4.1 |
||
arg0 encfs 1.4.0 |
||
arg0 encfs 1.4.2 |
||
arg0 encfs 1.4.1.1 |
||
arg0 encfs |
||
arg0 encfs 1.5.0 |