The Data Camouflage (aka FairCom Standard Encryption) algorithm in FairCom c-treeACE does not ensure that a decryption key is needed for accessing database contents, which allows context-dependent attackers to read cleartext database records by copying a database to another system that has a certain default configuration.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://www.kb.cert.org/vuls/id/900031 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2013-06-16T17:00:00Z
Updated: 2024-09-16T18:59:25.973Z
Reserved: 2012-12-06T00:00:00Z
Link: CVE-2013-0148
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-06-16T17:55:00.987
Modified: 2017-01-20T02:59:02.167
Link: CVE-2013-0148
Redhat
No data.