Lucene search

MitreCVE-2000-0357

HistoryMay 24, 2000 - 4:00 a.m.

CVE-2000-0357

2000-05-2404:00:00

mitre

web.nvd.nist.gov

orbit

esound

red hat linux 6.1

authentication key risk

weak random numbers

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.011

Percentile

84.2%

JSON

ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys.

Affected configurations

Nvd

Node

redhatlinuxMatch6.1

VendorProductVersionCPE
redhatlinux6.1cpe:2.3:o:redhat:linux:6.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
redhat	linux	6.1	cpe:2.3:o:redhat:linux:6.1:::::::*

References

www.redhat.com/corp/support/errata/RHSA1999058-01.html

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.011

Percentile

84.2%

JSON

Related for CVE-2000-0357