The default configuration of EMC RSA BSAFE Toolkits and RSA Data Protection Manager (DPM) 20130918 uses the Dual Elliptic Curve Deterministic Random Bit Generation (Dual_EC_DRBG) algorithm, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by leveraging unspecified "security concerns," aka the ESA-2013-068 issue. NOTE: this issue has been SPLIT from CVE-2007-6755 because the vendor announcement did not state a specific technical rationale for a change in the algorithm; thus, CVE cannot reach a conclusion that a CVE-2007-6755 concern was the reason, or one of the reasons, for this change.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-06-17 08:55
Updated : 2014-06-19 09:10
NVD link : CVE-2013-6078
Mitre link : CVE-2013-6078
JSON object : View
CWE
CWE-310
Cryptographic Issues
Products Affected
emc
- rsa_bsafe_toolkits
- rsa_data_protection_manager