Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-0898HistoryFeb 25, 2006 - 11:02 a.m.
CVE-2006-0898
2006-02-2511:02:00
Debian Security Bug Tracker
security-tracker.debian.org
11
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
0.011 Low
EPSS
Percentile
84.7%
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libcrypt-cbc-perl | < 2.17-1 | libcrypt-cbc-perl_2.17-1_all.deb |
| Debian | 11 | all | libcrypt-cbc-perl | < 2.17-1 | libcrypt-cbc-perl_2.17-1_all.deb |
| Debian | 10 | all | libcrypt-cbc-perl | < 2.17-1 | libcrypt-cbc-perl_2.17-1_all.deb |
| Debian | 999 | all | libcrypt-cbc-perl | < 2.17-1 | libcrypt-cbc-perl_2.17-1_all.deb |
| Debian | 13 | all | libcrypt-cbc-perl | < 2.17-1 | libcrypt-cbc-perl_2.17-1_all.deb |
Related
nessus
nessus
GLSA-200603-15 : Crypt::CBC: Insecure initialization vector
2006-03-18 00:00:00
Debian DSA-996-1 : libcrypt-cbc-perl - programming error
2006-10-14 00:00:00
RHEL 4 : Satellite Server (RHSA-2008:0630)
2010-01-10 00:00:00
ubuntucve
ubuntucve
CVE-2006-0898
2006-02-25 00:00:00
gentoo
gentoo
Crypt::CBC: Insecure initialization vector
2006-03-17 00:00:00
openvas
openvas
Debian Security Advisory DSA 996-1 (libcrypt-cbc-perl)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-996-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200603-15 (crypt-cbc)
2008-09-24 00:00:00
veracode
veracode
Insecure Initialization Vector
2020-04-10 00:32:56
prion
prion
Code injection
2006-02-25 11:02:00
cve
cve
CVE-2006-0898
2006-02-25 11:02:00
debian
debian
[SECURITY] [DSA 996-1] New Crypt::CBC packages fix cryptographic weakness
2006-03-13 11:13:39
[SECURITY] [DSA 996-1] New Crypt::CBC packages fix cryptographic weakness
2006-03-13 11:13:39
redhat
redhat
(RHSA-2008:0630) Low: Red Hat Network Satellite Server security update
2008-08-13 00:00:00
(RHSA-2008:0524) Low: Red Hat Network Satellite Server security update
2008-06-30 00:00:00
(RHSA-2008:0261) Moderate: Red Hat Network Satellite Server security update
2008-05-20 00:00:00
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
0.011 Low
EPSS
Percentile
84.7%
Related for DEBIANCVE:CVE-2006-0898