CVE-2013-6078

Name of the Vulnerable Software and Affected Versions EMC RSA BSAFE Toolkits and RSA Data Protection Manager (DPM) version 20130918

Description The default configuration of the affected software uses the Dual Elliptic Curve Deterministic Random Bit Generation (Dual EC DRBG) algorithm, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging unspecified security concerns.

Recommendations For EMC RSA BSAFE Toolkits and RSA Data Protection Manager (DPM) version 20130918, consider changing the default configuration to use a different random bit generation algorithm to mitigate the risk of exploitation. As a temporary workaround, restrict the use of the Dual EC DRBG algorithm until a more secure alternative is implemented.