CVE-2006-4021

Опубликовано: 17 авг. 2006

Источник: nvd

CVSS2: 2.6

EPSS Низкий

Описание

The cryptographic module in ScatterChat 1.0.x allows attackers to identify patterns in large numbers of messages by identifying collisions using a birthday attack on the custom padding mechanism for ECB mode encryption.

Ссылки

http://securityreason.com/securityalert/1396
http://www.scatterchat.com/advisories/2006-01_non_tech.html
Vendor Advisory
URL Repurposed
http://www.scatterchat.com/advisories/2006-01_tech.html
Vendor Advisory
URL Repurposed
http://www.securityfocus.com/archive/1/443038/100/100/threaded
http://www.securityfocus.com/bid/19485
http://securityreason.com/securityalert/1396
http://www.scatterchat.com/advisories/2006-01_non_tech.html
Vendor Advisory
URL Repurposed
http://www.scatterchat.com/advisories/2006-01_tech.html
Vendor Advisory
URL Repurposed
http://www.securityfocus.com/archive/1/443038/100/100/threaded
http://www.securityfocus.com/bid/19485

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:scatterchat:scatterchat:1.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 49%

0.00263

Низкий

2.6 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-r4jq-cqww-9m6q

github

почти 4 года назад