CVE-2004-2721

Published Dec 31, 2004

Last updated 7 hours ago

CVSS info 4.3

Overview

Description: The CheckGroup function in openSkat VTMF before 2.1 generates public key pairs in which the "p" variable might not be prime, which allows remote attackers to determine the private key and decrypt messages.
Source: cve@mitre.org
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-310

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:heiko_stamer:openskat:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3DA1A0B5-4B35-4953-84B4-A8E315707AEF",
            "versionEndIncluding": "2.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

https://nvd.nist.gov/vuln/detail/CVE-2004-2721
http://freshmeat.net/projects/openskat/?branch_id=36295&release_id=178549
http://securitytracker.com/id?1012181
http://www.osvdb.org/11652
http://www.securityfocus.com/bid/11667
https://exchange.xforce.ibmcloud.com/vulnerabilities/18049
http://freshmeat.net/projects/openskat/?branch_id=36295&release_id=178549
http://securitytracker.com/id?1012181
http://www.osvdb.org/11652
http://www.securityfocus.com/bid/11667
https://exchange.xforce.ibmcloud.com/vulnerabilities/18049

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References