Faircom c-treeACE provides a weak obfuscation algorithm (CWE-327) that may be unobfuscated without knowledge of a key or password. The algorithm was formerly called Faircom Standard Encryption but is now called Data Camouflage.
Faircom c-treeACE provides a weak obfuscation algorithm that may be unobfuscated without knowledge of a key or password. Faircom formerly described this algorithm as follows:
FairCom Standard Encryption
An attacker that is able to obtain a database that uses the Data Camouflage algorithm (formerly Faircom Standard Encryption) may be able to unobfuscate the contents of the database.
Use Faircom's Advanced File Encryption
Thanks to Justin Shafer for reporting this vulnerability.
This document was written by Jared Allar.
|Date First Published:||2013-06-10|
|Date Last Updated:||2013-06-11 11:10 UTC|