CVE Vulnerabilities

CVE-2008-2780

Published: Jun 19, 2008 | Modified: Aug 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The Anubis (aka Anubis+Ripe160) plugin before 1.3 for encrypt stores the unencrypted files size in cleartext in the header of the encrypted file, which allows attackers to distinguish between encrypted data and random padding at the end of the encrypted file.

Affected Software

Name Vendor Start Version End Version
Anubis_plugin Albinoloverats * 1.2

References