AI Score
Confidence
Low
EPSS
Percentile
80.3%
mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, seeds its random number generator with its process ID, which limits the space of possible seeds and makes it easier for attackers to conduct brute force password attacks.
archives.neohapsis.com/archives/bugtraq/2001-04/0173.html
archives.neohapsis.com/archives/bugtraq/2001-04/0192.html
securitytracker.com/id?1001303
www.kb.cert.org/vuls/id/527736
www.securityfocus.com/bid/2632
exchange.xforce.ibmcloud.com/vulnerabilities/6382