VDB
CVE-2006-0898
CVE-2006-0898
PUBLISHED
Reported by mitre · Published February 25, 2006
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a, n/a |
Timeline
- Feb 25, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 20899 third-party-advisoryx_refsource_SECUNIA
- RHSA-2008:0630 vendor-advisoryx_refsource_REDHAT
- 31493 third-party-advisoryx_refsource_SECUNIA
- GLSA-200603-15 vendor-advisoryx_refsource_GENTOO
- 19187 third-party-advisoryx_refsource_SECUNIA
- 488 third-party-advisoryx_refsource_SREASON
- DSA-996 vendor-advisoryx_refsource_DEBIAN
- 20060223 Vulnerability in Crypt::CBC Perl module, versions <= 2.16 mailing-listx_refsource_BUGTRAQ
- SUSE-SR:2006:015 vendor-advisoryx_refsource_SUSE
- 19303 third-party-advisoryx_refsource_SECUNIA
- 18755 third-party-advisoryx_refsource_SECUNIA
- 16802 vdb-entryx_refsource_BID
- RHSA-2008:0261 vendor-advisoryx_refsource_REDHAT
- crypt-cbc-header-weak-encryption(24954) vdb-entryx_refsource_XF