CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
24.8%
Off-by-one error in passwd 0.68 and earlier, when using the --stdin option, causes passwd to use the first 78 characters of a password instead of the first 79, which results in a small reduction of the search space required for brute force attacks.
Vendor | Product | Version | CPE |
---|---|---|---|
mandrakesoft | mandrake_multi_network_firewall | 8.2 | cpe:2.3:a:mandrakesoft:mandrake_multi_network_firewall:8.2:*:*:*:*:*:*:* |
mandrakesoft | mandrake_linux | 8.2 | cpe:2.3:o:mandrakesoft:mandrake_linux:8.2:*:*:*:*:*:*:* |
mandrakesoft | mandrake_linux | 8.2 | cpe:2.3:o:mandrakesoft:mandrake_linux:8.2:*:ppc:*:*:*:*:* |
mandrakesoft | mandrake_linux | 9.0 | cpe:2.3:o:mandrakesoft:mandrake_linux:9.0:*:*:*:*:*:*:* |
mandrakesoft | mandrake_linux | 9.1 | cpe:2.3:o:mandrakesoft:mandrake_linux:9.1:*:*:*:*:*:*:* |
mandrakesoft | mandrake_linux | 9.1 | cpe:2.3:o:mandrakesoft:mandrake_linux:9.1:*:ppc:*:*:*:*:* |
mandrakesoft | mandrake_linux | 9.2 | cpe:2.3:o:mandrakesoft:mandrake_linux:9.2:*:*:*:*:*:*:* |
mandrakesoft | mandrake_linux | 9.2 | cpe:2.3:o:mandrakesoft:mandrake_linux:9.2:*:amd64:*:*:*:*:* |
mandrakesoft | mandrake_linux | 10.0 | cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:* |
mandrakesoft | mandrake_linux_corporate_server | 2.1 | cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:* |