CVE-2014-9687

Опубликовано: 19 дек. 2011

Источник: redhat

CVSS2: 1.2

Описание

eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	ecryptfs-utils	Will not fix
Red Hat Enterprise Linux 6	ecryptfs-utils	Will not fix
Red Hat Enterprise Linux 7	ecryptfs-utils	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-547

https://bugzilla.redhat.com/show_bug.cgi?id=1193091ecryptfs-utils: default salt is used for wrapping passphrase

1.2 Low

CVSS2

Связанные уязвимости

CVE-2014-9687

ubuntu

почти 11 лет назад

eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.

CVE-2014-9687

nvd

почти 11 лет назад

eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.

CVE-2014-9687

debian

почти 11 лет назад

eCryptfs 104 and earlier uses a default salt to encrypt the mount pass ...

GHSA-mc6q-88m2-653g

github

больше 3 лет назад

eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack.

openSUSE-SU-2016:0291-1

suse-cvrf

около 10 лет назад

Security update for ecryptfs-utils

1.2 Low

CVSS2