exploitDog

CVE-2012-3287

Опубликовано: 13 июн. 2012

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Poul-Henning Kamp md5crypt has insufficient algorithmic complexity and a consequently short runtime, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack, as demonstrated by an attack using GPU hardware.

Ссылки

http://phk.freebsd.dk/sagas/md5crypt_eol.html
Vendor Advisory
https://phk.freebsd.dk/sagas/md5crypt_eol/
http://phk.freebsd.dk/sagas/md5crypt_eol.html
Vendor Advisory
https://phk.freebsd.dk/sagas/md5crypt_eol/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:poul-henning_kamp:md5crypt:-:*:*:*:*:*:*:*

EPSS

Процентиль: 59%

0.00381

Низкий

5 Medium

CVSS2

Дефекты

CWE-310

Связанные уязвимости

CVE-2012-3287

ubuntu

больше 13 лет назад

Poul-Henning Kamp md5crypt has insufficient algorithmic complexity and a consequently short runtime, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack, as demonstrated by an attack using GPU hardware.

GHSA-5p57-54cm-9527

github

больше 3 лет назад

Poul-Henning Kamp md5crypt has insufficient algorithmic complexity and a consequently short runtime, which makes it easier for context-dependent attackers to discover cleartext passwords via a brute-force attack, as demonstrated by an attack using GPU hardware.

EPSS

Процентиль: 59%

0.00381

Низкий

5 Medium

CVSS2

Дефекты

CWE-310