CVE-2006-0898

Published Feb 25, 2006

Last updated 3 months ago

CVSS info 2.6

Overview

Description: Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.6
Impact score: 2.9
Exploitability score: 4.9
Vector string: AV:N/AC:H/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89DA8BBA-BD52-4681-BBBB-CC5AABE54F2C",
            "versionEndIncluding": "2.16"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:1.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B2F0A67-A7CE-49D6-A2CD-6F4393FE2A37"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:1.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2DAEE37D-C3AB-47C2-9CB5-8FE8701CE26C"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:1.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1652B31A-A08D-409F-82CC-63C38BD54777"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:1.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A31AE55-82F5-4013-BBA9-846FE8C141B9"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:1.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16FF2FE4-1517-49E2-90BD-0AEC23AABBA9"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:1.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18B9114C-1080-4C56-967B-0B4AAB4B74C3"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:1.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FAD3579-5DA3-4421-9CB8-84DF1C5EED77"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "464C92A8-C933-43C9-97D3-2E10F81C9515"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC89E8C4-A060-44F6-B8BB-2DC740056168"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0613A87-1DA3-4B38-809C-3A9C5FD57D0D"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4620FA9-7988-4662-B1AB-890B44BB0563"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86E0A245-9F6C-4380-8EB7-0E40E593FAF3"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.05:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58FDCFFB-A5C0-4DFC-BC3F-889F35C2279A"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.07:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F408A93-B157-4AAE-A82E-9D9C2644031A"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.08:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8633D8F7-4760-4AF1-8D66-65F9FD6CD8FE"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.09:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBB236DB-B41E-4195-A2D8-4DC236E9AE66"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F0AA0EA-08C8-4011-A9FC-F7FBDFF440BB"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1DB55D93-46B9-4E55-903B-FFFF60200BF2"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DCEEE347-298E-41B3-B84F-6F7F682FCBBB"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2452328-546D-425C-A1E3-19339EE01BCD"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93CBC7F6-8104-4871-9DBA-D76E97301E00"
          },
          {
            "criteria": "cpe:2.3:a:lincoln_d._stein:crypt_cbc:2.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D0C7579-81EF-44C6-8956-3DB78CFF83C2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References