Lucene search

[email protected]CVE-2004-2136

HistoryJun 01, 2005 - 4:00 a.m.

CVE-2004-2136

2005-06-0104:00:00

[email protected]

web.nvd.nist.gov

dm-crypt

linux kernel

file systems

iv computation

weaknesses

watermarked files

decryption

cve-2004-2136

nvd

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.7%

JSON

dm-crypt on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain “IV computation” weaknesses that allow watermarked files to be detected without decryption.

Affected configurations

NVD

Node

linuxlinux_kernelMatch2.6.0

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.6.0

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.6.0

References

marc.info/?l=linux-kernel&m=107719798631935&w=2

mareichelt.de/pub/notmine/diskenc.pdf

www.securiteam.com/exploits/5UP0P1PFPM.html

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.7%

JSON

Related for CVE-2004-2136

cvelist1 nvd1