---------------------------------------------------------------------- List of products vulnerable to insecure library loading vulnerabilities: http://secunia.com/_%22insecure%20library%20loading%22 The list is continuously updated as we confirm the vulnerability reports so check back regularly too see if any of your apps are affected. ---------------------------------------------------------------------- TITLE: EncFS Multiple Weaknesses SECUNIA ADVISORY ID: SA41158 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/41158/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=41158 RELEASE DATE: 2010-08-30 DISCUSS ADVISORY: http://secunia.com/advisories/41158/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/41158/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=41158 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: Micha Riser has reported some weaknesses in EncFS, which can be exploited by malicious people to bypass certain security features. 1) The application uses only 4 bytes as initialisation vector although 8 bytes are intended, which can lead to e.g. lower cryptographic security than expected. 2) The application does not properly protect against "watermarking" attacks when using the CBC mode, which can be exploited to e.g. determine if a specially crafted file has been stored. 3) When using CFB cipher mode, cipher blocks containing a single byte can disclose certain information about the file content to the attacker. The weaknesses are reported in versions prior to 1.7. Other versions may also be affected. SOLUTION: Update to version 1.7, which fixes weaknesses #1 and #2 by using a different initialisation vector setup code for new file systems. Use the "MAC block headers" or "MAC random bytes" options to mitigate the CFB cipher mode attacks. PROVIDED AND/OR DISCOVERED BY: Micha Riser ORIGINAL ADVISORY: Micha Riser: http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0316.html EncFS: http://www.arg0.net/encfs#TOC-Change-Log OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXPLOIT: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------