VDB
CERTCC-2010-840249
CERTCC-2010-840249
PUBLISHED
CVSS 10 CRITICAL
The hashing algorithm that is used in the standard authentication API for VxWorks is susceptible to collisions. An attacker can brute force a password by guessing a string that produces the same hash as a legitimate password.
Risk Scores
CVSS 2.0
10
Timeline
- Aug 2, 2010 CVE Published
- Jun 2, 2014 CVE Updated
- Mar 17, 2026 Security Advisory
References
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) url
- Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib) advisory