CVE-2007-2640

CVE-2007-2640

EPSS 1.4%

LibTMCG before 1.1.1 does not perform a range check to avoid "trivial group generators," which allows attackers to obtain sensitive information about private cards.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://osvdb.org/34772 http://savannah.nongnu.org/forum/forum.php?forum_id=4847 http://secunia.com/advisories/25317 https://exchange.xforce.ibmcloud.com/vulnerabilities/34235 http://www.securityfocus.com/bid/23930 http://www.vupen.com/english/advisories/2007/1760