CVE Vulnerabilities

CVE-2008-4368

Published: Oct 01, 2008 | Modified: Aug 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The default configuration of Java 1.5 on Apple Mac OS X 10.5.4 and 10.5.5 contains a jurisdiction policy that limits Java Cryptography Extension (JCE) key sizes to 128 bits, which makes it easier for attackers to decrypt ciphertext produced by JCE.

Affected Software

Name Vendor Start Version End Version
Mac_os_x Apple 10.5.4 10.5.4
Mac_os_x Apple 10.5.5 10.5.5

References