Re: ActivCard password cache memory leakage

From: Massimo Cereda (massimo.ceredaat_private)
Date: Tue Apr 15 2003 - 07:59:04 PDT

Next message: Marcus Beaman: "Veritas BackupExec 9.0 may ship with upatched MS SQL Desktop Engine"

Previous message: Immunix Security Team: "Immunix Secured OS 7+ glibc update"
Maybe in reply to: OTERO Hernan Gustavo EDS: "ActivCard password cache memory leakage"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

('binary' encoding is not supported, stored as-is) In-Reply-To: <9969CF31A0D6D411BC4B00508BB38E84031F4D94@BAIMSG4> >The problem found relates to accessing static passwords stored (for >performance) in a memory cache by ActivCard Gold. ActivCard recognizes the >seriousness of this problem, and will fix it in the next version of the >product - ActivCard is currently working on a mechanism that will prevent a >memory dump to access any kind of personal data. The new Gold 2.3 was relased last week, is still vulnerable? Massimo

Next message: Marcus Beaman: "Veritas BackupExec 9.0 may ship with upatched MS SQL Desktop Engine"
Previous message: Immunix Security Team: "Immunix Secured OS 7+ glibc update"
Maybe in reply to: OTERO Hernan Gustavo EDS: "ActivCard password cache memory leakage"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Apr 15 2003 - 13:07:52 PDT