mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, seeds its random number generator with its process ID, which limits the space of possible seeds and makes it easier for attackers to conduct brute force password attacks.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-04-21T04:00:00
Updated: 2024-08-08T04:58:11.593Z
Reserved: 2005-04-21T00:00:00
Link: CVE-2001-1467
Vulnrichment
No data.
NVD
Status : Modified
Published: 2001-04-11T04:00:00.000
Modified: 2024-11-20T23:37:45.830
Link: CVE-2001-1467
Redhat
No data.