Lucene search

[email protected]CVE-2001-0160

HistoryApr 15, 2005 - 4:00 a.m.

CVE-2001-0160

2005-04-1504:00:00

[email protected]

web.nvd.nist.gov

lucent/orinoco wavelan

wireless encryption protocol

remote attackers

decryption

cve-2001-0160

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON

Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will let them decrypt messages.

Affected configurations

NVD

Node

lucentwavelan

orinocoorinoco_wavelan

CPENameOperatorVersion
lucent:wavelanlucent wavelaneq*
orinoco:orinoco_wavelanorinoco orinoco wavelaneq*

CPE	Name	Operator	Version
lucent:wavelan	lucent wavelan	eq	*
orinoco:orinoco_wavelan	orinoco orinoco wavelan	eq	*

References

www.cs.jhu.edu/~seny/pubs/wince802.pdf

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON

Related for CVE-2001-0160

cvelist1 nvd1