Hardcoded CBC Key and Initialization Vector Vulnerability in Impero Education Pro

Hardcoded CBC Key and Initialization Vector Vulnerability in Impero Education Pro

CVE-2015-5997 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

Impero Education Pro before 5105 uses a hardcoded CBC key and initialization vector derived from a hash of the Imp3ro string, which makes it easier for remote attackers to obtain plaintext data by sniffing the network for ciphertext data.

Learn more about our Network Penetration Testing.