PT-2000-1390 · Omnis · Omnis Studio

Published

2000-05-01

Updated

2008-09-10

CVE-2000-0449

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Omnis Studio version 2.4

Description The issue concerns the use of weak encryption, specifically trivial encoding, for encrypting database fields.

Recommendations For Omnis Studio version 2.4, consider using an alternative, more secure encryption method to protect database fields until a patch or update is available that addresses this issue. As a temporary workaround, restrict access to sensitive data stored in these fields to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0449

Affected Products

Omnis Studio

PT-2000-1390 · Omnis · Omnis Studio

CVE-2000-0449

Related Identifiers

Affected Products

References · 4