Vulnerability Description
RTS CryptoBuddy 1.2 and earlier truncates long passphrases without warning the user, which may make it easier to conduct certain brute force guessing attacks.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Research Triangle Software | Cryptobuddy | 1.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/archive/1/311176
- http://www.securityfocus.com/bid/6815
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11294
- http://www.securityfocus.com/archive/1/311176
- http://www.securityfocus.com/bid/6815
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11294
FAQ
What is CVE-2003-1389?
CVE-2003-1389 is a vulnerability with a CVSS score of 7.5 (HIGH). RTS CryptoBuddy 1.2 and earlier truncates long passphrases without warning the user, which may make it easier to conduct certain brute force guessing attacks.
How severe is CVE-2003-1389?
CVE-2003-1389 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-1389?
Check the references section above for vendor advisories and patch information. Affected products include: Research Triangle Software Cryptobuddy.