VULHUB ™

It has been reported that Finjan SurfinGate uses weak algorithms to encrypt the Console and Oracle passwords. Both passwords are stored on the local system and are accessible by local users. A malicious local user may trivially decrypt stored passwords implementing the weak algorithms. This may aid the attacker in launching further attacks against a target system and the filtering software.

It has been reported that Finjan SurfinGate uses weak algorithms to encrypt the Console and Oracle passwords. Both passwords are stored on the local system and are accessible by local users. A malicious local user may trivially decrypt stored passwords implementing the weak algorithms. This may aid the attacker in launching further attacks against a target system and the filtering software.