CVE Vulnerabilities

CVE-2001-0967

Published: Aug 31, 2001 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing.

Affected Software

Name Vendor Start Version End Version
Arkeia Knox_software 4.2 4.2
Arkeia Knox_software 4.2.8.2 4.2.8.2

References