CVE-2006-0898

Published: Feb 25, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20899

third-party-advisory

x_refsource_SECUNIA

RHSA-2008:0630

vendor-advisory

x_refsource_REDHAT

31493

third-party-advisory

x_refsource_SECUNIA

GLSA-200603-15

vendor-advisory

x_refsource_GENTOO

19187

third-party-advisory

x_refsource_SECUNIA

488

third-party-advisory

x_refsource_SREASON

DSA-996

vendor-advisory

x_refsource_DEBIAN

20060223 Vulnerability in Crypt::CBC Perl module, versions <= 2.16

mailing-list

x_refsource_BUGTRAQ

SUSE-SR:2006:015

vendor-advisory

x_refsource_SUSE

19303

third-party-advisory

x_refsource_SECUNIA

18755

third-party-advisory

x_refsource_SECUNIA

16802

vdb-entry

x_refsource_BID

RHSA-2008:0261

vendor-advisory

x_refsource_REDHAT

crypt-cbc-header-weak-encryption(24954)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-0898

Description

Affected Products

References