CVE-2007-0163
N/A
N/A
Summary
SecureKit Steganography 1.7.1 and 1.8 embeds password information in the carrier file, which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing the last 20 bytes of the JPEG image with alternate password information.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/archive/1/456283/100/0/threaded
- http://www.securityfocus.com/archive/1/456519/100/0/threaded
- http://osvdb.org/31244
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31378
- http://homepage.mac.com/adonismac/Advisory/steg/steganography.html
- http://secunia.com/advisories/23639
References
- http://www.securityfocus.com/archive/1/456283/100/0/threaded
- http://www.securityfocus.com/archive/1/456519/100/0/threaded
- http://osvdb.org/31244
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31378
- http://homepage.mac.com/adonismac/Advisory/steg/steganography.html
- http://secunia.com/advisories/23639
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.