Lucene search

[email protected]CVE-2006-1833

HistoryApr 19, 2006 - 4:06 p.m.

CVE-2006-1833

2006-04-1916:06:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-1833

intel rng driver

netbsd

encryption keys

remote attackers

vulnerability

7.4 High

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

0.009 Low

EPSS

Percentile

82.6%

JSON

Intel RNG Driver in NetBSD 1.6 through 3.0 may incorrectly detect the presence of the pchb interface, which will cause it to always generate the same random number, which allows remote attackers to more easily crack encryption keys generated from the interface.

CPENameOperatorVersion
netbsd:netbsdnetbsdeq1.6
netbsd:netbsdnetbsdeq2.1
netbsd:netbsdnetbsdeq2.0.2
netbsd:netbsdnetbsdeq1.6.1
netbsd:netbsdnetbsdeq2.0.3
netbsd:netbsdnetbsdeq1.6.2
netbsd:netbsdnetbsdeq2.0.1
netbsd:netbsdnetbsdeq3.0
netbsd:netbsdnetbsdeq2.0

CPE	Name	Operator	Version
netbsd:netbsd	netbsd	eq	1.6
netbsd:netbsd	netbsd	eq	2.1
netbsd:netbsd	netbsd	eq	2.0.2
netbsd:netbsd	netbsd	eq	1.6.1
netbsd:netbsd	netbsd	eq	2.0.3
netbsd:netbsd	netbsd	eq	1.6.2
netbsd:netbsd	netbsd	eq	2.0.1
netbsd:netbsd	netbsd	eq	3.0
netbsd:netbsd	netbsd	eq	2.0

References

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-009.txt.asc

secunia.com/advisories/19585

securitytracker.com/id?1015907

www.osvdb.org/24577

www.securityfocus.com/bid/17496

exchange.xforce.ibmcloud.com/vulnerabilities/25786

7.4 High

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

0.009 Low

EPSS

Percentile

82.6%

JSON

Related for CVE-2006-1833

prion1