CVE-2006-0591

Severity Score

1.2

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The crypt_gensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in crypt_blowfish 0.4.7 and earlier do not evenly and randomly distribute salts, which makes it easier for attackers to guess passwords from a stolen password file due to the increased number of collisions.

Las funciones crypt_gensalt de huellas digitales ('hashes') de contraseñas basadas en DES extendidas con estilo BSDI y basadas en MD5 con estilo FreeBSD en crypt_blowfish 0.4.7 y anteriores no distribuyen las sales equitativamente y aleatoriamente en el espacio de huellas digitales, lo que hace más fácil a atacantes averiguar contraseñas de un fichero de contraseñas robado debido al número de colisiones aumentado.

*Credits: N/A

CVSS Scores

NISTv2 1.2

Attack Vector

Local

Attack Complexity

High

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2006-02-08 CVE Reserved
2006-02-08 CVE Published
2023-07-03 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-310: Cryptographic Issues

CAPEC

References (15)

URL	Tag	Source
http://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/glibc/crypt_blowfish/crypt_gensalt.c?only_with_tag=CRYPT_BLOWFISH_1_0	X_refsource_misc
http://support.avaya.com/elmodocs2/security/ASA-2006-113.htm	X_refsource_confirm
http://www.osvdb.org/23005	Vdb Entry
http://www.securityfocus.com/archive/1/424260/100/0/threaded	Mailing List
https://exchange.xforce.ibmcloud.com/vulnerabilities/24590	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11502	Signature

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/18772	2018-10-19

URL	Date	SRC
ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc	2018-10-19
http://secunia.com/advisories/20232	2018-10-19
http://secunia.com/advisories/20653	2018-10-19
http://secunia.com/advisories/20782	2018-10-19
http://www.redhat.com/support/errata/RHSA-2006-0526.html	2018-10-19
http://www.vupen.com/english/advisories/2006/0477	2018-10-19
https://access.redhat.com/security/cve/CVE-2006-0591	2006-05-23
https://bugzilla.redhat.com/show_bug.cgi?id=1618012	2006-05-23

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Solar Designer Search vendor "Solar Designer"		Crypt Blowfish Search vendor "Solar Designer" for product "Crypt Blowfish"				0.4.7 Search vendor "Solar Designer" for product "Crypt Blowfish" and version "0.4.7"		-		Affected