CVE Vulnerabilities

CVE-2007-0163

Published: Jan 10, 2007 | Modified: Oct 16, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.8 HIGH
AV:N/AC:L/Au:N/C:C/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

SecureKit Steganography 1.7.1 and 1.8 embeds password information in the carrier file, which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing the last 20 bytes of the JPEG image with alternate password information.

Affected Software

Name Vendor Start Version End Version
Securekit_steganography Securekit 1.8 1.8
Securekit_steganography Securekit 1.7.1 1.7.1

References