exploitDog

CVE-2006-0584

Опубликовано: 08 фев. 2006

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

The PSCipher function in PeopleSoft People Tools 8.4x uses PKCS #5 with a fixed DES key to store user passwords, which makes it easier for local users to guess passwords using a dictionary attack that compares output strings.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:peoplesoft:peopletools:8.4:*:*:*:*:*:*:*

cpe:2.3:a:peoplesoft:peopletools:8.40:*:*:*:*:*:*:*

cpe:2.3:a:peoplesoft:peopletools:8.41:*:*:*:*:*:*:*

cpe:2.3:a:peoplesoft:peopletools:8.42:*:*:*:*:*:*:*

cpe:2.3:a:peoplesoft:peopletools:8.43:*:*:*:*:*:*:*

cpe:2.3:a:peoplesoft:peopletools:8.45.5:*:*:*:*:*:*:*

cpe:2.3:a:peoplesoft:peopletools:8.46.3:*:*:*:*:*:*:*

EPSS

Процентиль: 21%

0.0007

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-hh4f-g5fg-535x

github

почти 4 года назад

The PSCipher function in PeopleSoft People Tools 8.4x uses PKCS #5 with a fixed DES key to store user passwords, which makes it easier for local users to guess passwords using a dictionary attack that compares output strings.

EPSS

Процентиль: 21%

0.0007

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other