exploitDog

CVE-2001-1467

Опубликовано: 11 апр. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, seeds its random number generator with its process ID, which limits the space of possible seeds and makes it easier for attackers to conduct brute force password attacks.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:don_libes:expect:5.2.8:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00637

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2001-1467

debian

почти 25 лет назад

mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, se ...

GHSA-f6m6-f2pm-2grw

github

почти 4 года назад

mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, seeds its random number generator with its process ID, which limits the space of possible seeds and makes it easier for attackers to conduct brute force password attacks.

EPSS

Процентиль: 70%

0.00637

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other