CVE-2006-0584
Published Feb 8, 2006
Last updated 6 years ago
Overview
- Description
- The PSCipher function in PeopleSoft People Tools 8.4x uses PKCS #5 with a fixed DES key to store user passwords, which makes it easier for local users to guess passwords using a dictionary attack that compares output strings.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:peoplesoft:peopletools:8.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "70B618A8-48AF-4193-BCD8-7B0F24923860"
},
{
"criteria": "cpe:2.3:a:peoplesoft:peopletools:8.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "805FBA0A-0B52-4E61-A45C-E2C9AD48E555"
},
{
"criteria": "cpe:2.3:a:peoplesoft:peopletools:8.41:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F94A7F77-D984-49BD-B59E-EBBC91C56C66"
},
{
"criteria": "cpe:2.3:a:peoplesoft:peopletools:8.42:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FD78CC13-C007-4AB1-912E-16B37D1D55CD"
},
{
"criteria": "cpe:2.3:a:peoplesoft:peopletools:8.43:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ECCB21D3-4FCB-4F0E-8430-B587512D04ED"
},
{
"criteria": "cpe:2.3:a:peoplesoft:peopletools:8.45.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "396A4024-2F8F-4921-8D88-06CBDF21FA42"
},
{
"criteria": "cpe:2.3:a:peoplesoft:peopletools:8.46.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D589760B-C617-403D-8C18-19E9F9FCFBCF"
}
],
"operator": "OR"
}
]
}
]