Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2001-1141
HistoryJul 10, 2001 - 4:00 a.m.

CVE-2001-1141

2001-07-1004:00:00
[email protected]
web.nvd.nist.gov
7

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.005

Percentile

75.6%

JSON

The Pseudo-Random Number Generator (PRNG) in SSLeay and OpenSSL before 0.9.6b allows attackers to use the output of small PRNG requests to determine the internal state information, which could be used by attackers to predict future pseudo-random numbers.

Affected configurations

Nvd
Node
opensslopensslMatch0.9.1c
OR
opensslopensslMatch0.9.2b
OR
opensslopensslMatch0.9.3
OR
opensslopensslMatch0.9.4
OR
opensslopensslMatch0.9.5
OR
opensslopensslMatch0.9.6
OR
opensslopensslMatch0.9.6a
OR
ssleayssleayMatch0.8.1
OR
ssleayssleayMatch0.9
OR
ssleayssleayMatch0.9.1
VendorProductVersionCPE
opensslopenssl0.9.1ccpe:2.3:a:openssl:openssl:0.9.1c:*:*:*:*:*:*:*
opensslopenssl0.9.2bcpe:2.3:a:openssl:openssl:0.9.2b:*:*:*:*:*:*:*
opensslopenssl0.9.3cpe:2.3:a:openssl:openssl:0.9.3:*:*:*:*:*:*:*
opensslopenssl0.9.4cpe:2.3:a:openssl:openssl:0.9.4:*:*:*:*:*:*:*
opensslopenssl0.9.5cpe:2.3:a:openssl:openssl:0.9.5:*:*:*:*:*:*:*
opensslopenssl0.9.6cpe:2.3:a:openssl:openssl:0.9.6:*:*:*:*:*:*:*
opensslopenssl0.9.6acpe:2.3:a:openssl:openssl:0.9.6a:*:*:*:*:*:*:*
ssleayssleay0.8.1cpe:2.3:a:ssleay:ssleay:0.8.1:*:*:*:*:*:*:*
ssleayssleay0.9cpe:2.3:a:ssleay:ssleay:0.9:*:*:*:*:*:*:*
ssleayssleay0.9.1cpe:2.3:a:ssleay:ssleay:0.9.1:*:*:*:*:*:*:*

Related

openvas 1
f5 1
nessus 3
cvelist 1
cve 1
cert 1
openvas
openvas
OpenSSL < 0.9.6b Information Disclosure Vulnerability
2020-11-06 00:00:00
f5
f5
K27110515 : Open SSL vulnerability CVE-2001-1141
2018-01-29 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : openssl (MDKSA-2001:065)
2004-07-31 00:00:00
OpenSSL < 0.9.6b Predictable Random Generator
2012-01-04 00:00:00
OpenSSL < 0.9.6e / 0.9.7b3 Multiple Remote Vulnerabilities
2002-08-05 00:00:00
cvelist
cvelist
CVE-2001-1141
2002-06-25 04:00:00
cve
cve
CVE-2001-1141
2002-06-25 04:00:00
cert
cert
OpenSSL PRNG contains design flaw that allows a user to determine internal state and predict future output
2001-10-26 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.005

Percentile

75.6%

JSON
Related for NVD:CVE-2001-1141
openvas1f51nessus3cvelist1cve1cert1