admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2007/CVE-2007-01xx/CVE-2007-0163.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

143 lines
4.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2007-0163",
"sourceIdentifier": "cve@mitre.org",
"published": "2007-01-10T00:28:00.000",
"lastModified": "2024-11-21T00:25:08.547",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "SecureKit Steganography 1.7.1 and 1.8 embeds password information in the carrier file, which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing the last 20 bytes of the JPEG image with alternate password information."
},
{
"lang": "es",
"value": "SecureKit Steganography 1.7.1 y 1.8 incluye informaci\u00f3n de contrase\u00f1a en el archivo transportador, lo cual permite a atacantes remotos evitar los requisitos de autenticaci\u00f3n y descifrar la esteganograf\u00eda incluida reemplazando los \u00faltimos 20 bytes de la imagen JPEG con informaci\u00f3n de contrase\u00f1a alternativa."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"baseScore": 7.8,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:securekit:securekit_steganography:1.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BAFE088F-1AF2-42CB-B487-F213FD6E5DD1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:securekit:securekit_steganography:1.8:*:*:*:*:*:*:*",
"matchCriteriaId": "B1A8A727-600C-4B45-8C53-88D560E7E345"
}
]
}
]
}
],
"references": [
{
"url": "http://homepage.mac.com/adonismac/Advisory/steg/steganography.html",
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Vendor Advisory"
]
},
{
"url": "http://osvdb.org/31244",
"source": "cve@mitre.org"
},
{
"url": "http://secunia.com/advisories/23639",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.securityfocus.com/archive/1/456283/100/0/threaded",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/archive/1/456519/100/0/threaded",
"source": "cve@mitre.org"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31378",
"source": "cve@mitre.org"
},
{
"url": "http://homepage.mac.com/adonismac/Advisory/steg/steganography.html",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Vendor Advisory"
]
},
{
"url": "http://osvdb.org/31244",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://secunia.com/advisories/23639",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.securityfocus.com/archive/1/456283/100/0/threaded",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.securityfocus.com/archive/1/456519/100/0/threaded",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31378",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}
Reference in New Issue View Git Blame Copy Permalink