Lucene search
DellCVELIST:CVE-2016-8217HistoryFeb 03, 2017 - 7:24 a.m.
CVE-2016-8217
2017-02-0307:24:00
dell
www.cve.org
6
EMC RSA BSAFE Crypto-J versions prior to 6.2.2 has a PKCS#12 Timing Attack Vulnerability. A possible timing attack could be carried out by modifying a PKCS#12 file that has an integrity MAC for which the password is not known. An attacker could then feed the modified PKCS#12 file to the toolkit and guess the current MAC one byte at a time. This is possible because Crypto-J uses a non-constant-time method to compare the stored MAC with the calculated MAC. This vulnerability is similar to the issue described in CVE-2015-2601.
CNA Affected
[
{
"product": "RSA BSAFE Crypto-J RSA BSAFE Crypto-J versions prior to 6.2.2",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "RSA BSAFE Crypto-J RSA BSAFE Crypto-J versions prior to 6.2.2"
}
]
}
]Related
cve
cve
CVE-2016-8217
2017-02-03 07:59:00
CVE-2015-2601
2015-07-16 10:59:27
prion
prion
Design/Logic Flaw
2017-02-03 07:59:00
Buffer overflow
2015-07-16 10:59:00
nvd
nvd
CVE-2016-8217
2017-02-03 07:59:00
CVE-2015-2601
2015-07-16 10:59:27
cvelist
cvelist
CVE-2015-2601
2015-07-16 10:00:00
ubuntucve
ubuntucve
CVE-2015-2601
2015-07-16 00:00:00
debiancve
debiancve
CVE-2015-2601
2015-07-16 10:59:27
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM DB2 QMF for Workstation (CVE-2015-2613, CVE-2015-2601, CVE-2015-2625)
2018-06-16 13:12:24
f5
f5
nessus
nessus
Oracle JRockit R28 < R28.3.7 Multiple Vulnerabilities (July 2015 CPU) (Bar Mitzvah) (Logjam)
2015-07-16 00:00:00
Juniper Junos Space < 15.1R2 Multiple Vulnerabilities (JSA10727) (Bar Mitzvah) (Logjam)
2016-06-23 00:00:00
Debian DLA-303-1 : openjdk-6 security update (Bar Mitzvah) (Logjam)
2015-08-31 00:00:00
openvas
openvas
Juniper Networks Junos Space Multiple Vulnerabilities (JSA10727)
2016-04-18 00:00:00
RedHat Update for java-1.7.0-openjdk RHSA-2015:1229-01
2015-07-16 00:00:00
Oracle: Security Advisory (ELSA-2015-1230)
2015-10-06 00:00:00
centos
centos
java security update
2015-07-15 15:08:01
java security update
2015-07-30 23:24:14
java security update
2015-07-15 15:39:22
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2015-07-16 00:00:00
java-1.6.0-openjdk security update
2015-07-31 00:00:00
java-1.7.0-openjdk security update
2015-07-15 00:00:00
amazon
amazon
Important: java-1.6.0-openjdk
2015-08-24 22:26:00
Critical: java-1.7.0-openjdk
2015-07-22 10:00:00
Important: java-1.8.0-openjdk
2015-07-22 10:00:00
osv
osv
openjdk-6 - security update
2015-08-28 00:00:00
redhat
redhat
(RHSA-2015:1229) Critical: java-1.7.0-openjdk security update
2015-07-15 00:00:00
(RHSA-2015:1230) Important: java-1.7.0-openjdk security update
2015-07-15 00:00:00
(RHSA-2015:1544) Important: java-1.5.0-ibm security update
2015-08-04 00:00:00
mageia
mageia
Updated java-1.7.0-openjdk package fixes security vulnerabilities
2015-07-23 12:39:14
Updated java-1.8.0-openjdk package fixes security vulnerabilities
2015-07-27 12:53:07
debian
debian
[SECURITY] [DLA 303-1] openjdk-6 security update
2015-08-28 08:31:00
[SECURITY] [DSA 3339-1] openjdk-6 security update
2015-08-19 20:19:22
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2015-07-30 00:00:00
OpenJDK 6 vulnerabilities
2015-08-06 00:00:00
archlinux
archlinux
jre7-openjdk: multiple issues
2015-07-22 00:00:00
veracode
veracode
Sandbox Restrictions Bypass
2019-05-02 05:41:17
Sandbox Restrictions Bypass
2019-05-02 05:41:17
Sandbox Restrictions Bypass
2019-05-02 05:41:17
suse
suse
Security update for java-1_6_0-ibm (important)
2015-08-05 11:08:49
Security update for java-1_6_0-ibm (important)
2015-09-08 13:10:01