[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FD] [SYSS-2015-036] Password Safe and Repository Enterprise v7.4.4 - Violation of Secure Design Principles (CWE-657)

To: fulldisclosure@xxxxxxxxxxxx
Subject: Re: [FD] [SYSS-2015-036] Password Safe and Repository Enterprise v7.4.4 - Violation of Secure Design Principles (CWE-657)
From: Nick Boyce <nick.boyce@xxxxxxxxx>
Date: Sat, 15 Apr 2017 14:53:21 +0100

> [vulnerability in] Password Safe and Repository
> Enterprise ... password management
> software ... vendor MATESO GmbH

JFTR, neither the linked:
http://www.passwordsafe.de/en/products/business/enterprise-edition.html
[redirects to 
https://www.passwordsafe.com/products/business/enterprise-edition.html]
nor the related:
https://private.passwordsafe.de/index_e.html
(home user edition)

appear to have any connection with the Bruce-Schneir-originated
Password Safe that so many of us know and love.
https://pwsafe.org/

You know what to do :)

Cheers
Nick

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] CVE-2017-0199 PoC
Next by Date: [FD] Mantis Bug Tracker v1.3.0 / 2.3.0 Pre-Auth Remote Password Reset
Previous by thread: [FD] [SYSS-2015-036] Password Safe and Repository Enterprise v7.4.4 - Violation of Secure Design Principles (CWE-657)
Next by thread: [FD] ChromeOS / ChromeBooks Persist Certain Network Settings in Guest Mode
Index(es):
- Date
- Thread