CVE-2010-3074

Name of the Vulnerable Software and Affected Versions EncFS versions prior to 1.7.0

Description The issue concerns the use of an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems. This allows local users to obtain sensitive information via a watermark attack.

Recommendations For versions prior to 1.7.0, update to version 1.7.0 or later to resolve the issue.