Описание
libxcrypt in SUSE openSUSE 11.0 uses the DES algorithm when the configuration specifies the MD5 algorithm, which makes it easier for attackers to conduct brute-force attacks against hashed passwords.
Ссылки
- Mailing ListVendor Advisory
- Mailing ListVendor Advisory
- Broken LinkThird Party Advisory
- Broken LinkThird Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Mailing ListVendor Advisory
- Mailing ListVendor Advisory
- Broken LinkThird Party Advisory
- Broken LinkThird Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00711
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-327
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 17 лет назад
libxcrypt in SUSE openSUSE 11.0 uses the DES algorithm when the configuration specifies the MD5 algorithm, which makes it easier for attackers to conduct brute-force attacks against hashed passwords.
CVSS3: 7.5
debian
больше 17 лет назад
libxcrypt in SUSE openSUSE 11.0 uses the DES algorithm when the config ...
CVSS3: 7.5
github
почти 4 года назад
libxcrypt in SUSE openSUSE 11.0 uses the DES algorithm when the configuration specifies the MD5 algorithm, which makes it easier for attackers to conduct brute-force attacks against hashed passwords.
EPSS
Процентиль: 72%
0.00711
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-327