Vulnerability Details CVE-2002-0941
The ConsoleCallBack class for nCipher running under JRE 1.4.0 and 1.4.0_01, as used by the TrustedCodeTool and possibly other applications, may leak a passphrase when the user aborts an application that is prompting for the passphrase, which could allow attackers to gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.1%
CVSS Severity
CVSS v2 Score 4.6
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0172.html
- http://www.iss.net/security_center/static/9354.php
- http://www.securityfocus.com/bid/5024
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0172.html
- http://www.iss.net/security_center/static/9354.php
- http://www.securityfocus.com/bid/5024