CVE-2013-2261 – Cryptocat 2.0.21 Chrome Extension - 'img/keygen.gif' File Information Disclosure
https://notcve.org/view.php?id=CVE-2013-2261
Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure En Cryptocat versiones anteriores a 2.0.22, la Extensión de Chrome "img/keygen.gif" presenta una Divulgación de Información. • https://www.exploit-db.com/exploits/38636 https://tobtu.com/decryptocat.php https://www.openwall.com/lists/oss-security/2013/07/10/15 https://www.securityfocus.com/bid/61090 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2013-4104
https://notcve.org/view.php?id=CVE-2013-4104
Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol Cryptocat versiones anteriores a 2.0.22, presenta un cifrado débil en el Protocolo Socialist Millionnaire. • https://tobtu.com/decryptocat.php https://vuldb.com/?id.9436 https://www.openwall.com/lists/oss-security/2013/07/10/15 https://www.securityfocus.com/bid/61108 • CWE-326: Inadequate Encryption Strength •
CVE-2013-4100
https://notcve.org/view.php?id=CVE-2013-4100
Cryptocat before 2.0.22 has Remote Denial of Service via username Cryptocat versiones anteriores a 2.0.22, presenta una Denegación de Servicio Remota mediante el nombre de usuario • https://tobtu.com/decryptocat.php https://vuldb.com/?id.9439 https://www.openwall.com/lists/oss-security/2013/07/10/15 https://www.securityfocus.com/bid/61094 • CWE-20: Improper Input Validation •
CVE-2013-4101
https://notcve.org/view.php?id=CVE-2013-4101
Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness Cryptocat versiones anteriores a 2.0.22, una Debilidad del Manejo HTML del Decodificador de Marcado de Enlaces. • https://tobtu.com/decryptocat.php https://www.openwall.com/lists/oss-security/2013/07/10/15 https://www.securityfocus.com/bid/61098 • CWE-20: Improper Input Validation •
CVE-2013-4102
https://notcve.org/view.php?id=CVE-2013-4102
Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness Cryptocat versiones anteriores a 2.0.22, una Debilidad del Generador de Números Aleatorios de la función Math.random() del archivo strophe.js. • https://tobtu.com/decryptocat.php https://vuldb.com/?id.9443 https://www.openwall.com/lists/oss-security/2013/07/10/15 https://www.securityfocus.com/bid/61095 • CWE-330: Use of Insufficiently Random Values •