Flaw: Java applications using nCipher ConsoleCallBack

nCipher has warned in certain circumstances, Java[TM] applications using the standard nCipher ConsoleCallBack class on Windows NT/2000 can be made to leak smart card passphrases to the current user's shell.

This flaw could affect those using nForce or nShield modules,as well as run software which makes use of the ConsoleCallBack with version 1.4.0 of the Java Runtime Environment on Windows.

More information can be found at: http://www.ncipher.com/support/advisories/

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about nCipher

Show Comments