CVE-2012-2743

N/A Unknown

Published: June 27, 2012 Modified: April 29, 2026

Description

Revelation 0.4.13-2 and earlier does not iterate through SHA hashing algorithms for AES encryption, which makes it easier for context-dependent attackers to guess passwords via a brute force attack.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://knoxin.blogspot.co.uk/2012/06/revelation-password-manager-considered.html

Source: secalert@redhat.com

http://oss.codepoet.no/revelation/issue/61/file-format-magic-string-version-mismatch

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2012/06/18/1

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2012/06/18/3

Source: secalert@redhat.com

http://www.securityfocus.com/bid/54060

Source: secalert@redhat.com

https://bugs.gentoo.org/show_bug.cgi?id=421571

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/76408

Source: secalert@redhat.com

http://knoxin.blogspot.co.uk/2012/06/revelation-password-manager-considered.html