[29792] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: ActivCard password cache memory leakage

daemon@ATHENA.MIT.EDU (Massimo Cereda)
Tue Apr 15 16:12:31 2003

Date: 15 Apr 2003 14:59:04 -0000
Message-ID: <20030415145904.1210.qmail@www.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: Massimo Cereda <massimo.cereda@cgweb.it>
To: bugtraq@securityfocus.com

In-Reply-To: <9969CF31A0D6D411BC4B00508BB38E84031F4D94@BAIMSG4>

>The problem found relates to accessing static passwords stored (for
>performance) in a memory cache by ActivCard Gold. ActivCard recognizes the
>seriousness of this problem, and will fix it in the next version of the
>product - ActivCard is currently working on a mechanism that will prevent 
a
>memory dump to access any kind of personal data. 

The new Gold 2.3 was relased last week, is still vulnerable?

Massimo


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[29792] in bugtraq

Re: ActivCard password cache memory leakage

daemon@ATHENA.MIT.EDU (Massimo Cereda)Tue Apr 15 16:12:31 2003

daemon@ATHENA.MIT.EDU (Massimo Cereda)
Tue Apr 15 16:12:31 2003