Flaw: Java applications using nCipher ConsoleCallBack

nCipher has warned in certain circumstances, Java[TM] applications using the standard nCipher ConsoleCallBack class on Windows NT/2000 can be made to leak smart card passphrases to the current user's shell.

This flaw could affect those using nForce or nShield modules,as well as run software which makes use of the ConsoleCallBack with version 1.4.0 of the Java Runtime Environment on Windows.

More information can be found at: http://www.ncipher.com/support/advisories/

Join the newsletter!

Error: Please check your email address.

More about nCipher

Show Comments

Market Place