CVE-2014-1921CVE-2014-1921

Affected configuration(s):

cpe:/a:parcimonie_project:parcimonie:0.6-1
cpe:/a:parcimonie_project:parcimonie:0.6-3
cpe:/a:parcimonie_project:parcimonie:0.7-1
cpe:/a:parcimonie_project:parcimonie:0.7.1-1

Date published: 2014-02-14T10:55:06.203-05:00

Date last modified: 2017-08-28T21:34:28.423-04:00

CVSS Score: 7.5

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://seclists.org/oss-sec/2014/q1/305

Summary: parcimonie before 0.8.1, when using a large keyring, sleeps for the same amount of time between fetches, which allows attackers to correlate key fetches via unspecified vectors.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.