Reduced Key Derivation Function (KDF) in CounterPane PasswordSafe 1.x and 2.x Vulnerability

Reduced Key Derivation Function (KDF) in CounterPane PasswordSafe 1.x and 2.x Vulnerability

CVE-2005-3801 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

CounterPane PasswordSafe 1.x and 2.x allows local users to test possible encryption keys against a subset of the stored key data without performing the more expensive key derivation function (KDF) function, which reduces the search time in brute force attacks.

Learn more about our User Device Pen Test.