CVE-2016-6298 (jwcrypto)

Posted on 2016년 9월 2일2016년 9월 3일 by admin

The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack (MMA).

Source: CVE-2016-6298 (jwcrypto)

답글 남기기 응답 취소