Computer Security
[EN] securityvulns.ru no-pyccku


PowerArchiver weak encrption
Published:31.03.2014
Source:
SecurityVulns ID:13649
Type:local
Threat Level:
4/10
Description:Native ZIP encryption is used instead of AES.
Affected:POWERARCHIVER : PowerArchiver 14ю02
CVE:CVE-2014-2319 (The Encrypt Files feature in ConeXware PowerArchiver before 14.02.05 uses legacy ZIP encryption even if the AES 256-bit selection is chosen, which makes it easier for context-dependent attackers to obtain sensitive information via a known-plaintext attack.)
Original documentdocumentHanno Bock, PowerArchiver: Uses insecure legacy PKZIP encryption when AES is selected (CVE-2014-2319) (31.03.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod