CVE-2008-6792

EPSS 0.38%
Veröffentlicht 07.05.2009 17:30:03
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

system-tools-backends before 2.6.0-1ubuntu1.1 in Ubuntu 8.10, as used by "Users and Groups" in GNOME System Tools, hashes account passwords with 3DES and consequently limits effective password lengths to eight characters, which makes it easier for context-dependent attackers to successfully conduct brute-force password attacks.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ubuntu ≫ Linux Version8.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.38%	0.561

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://osvdb.org/50037

http://secunia.com/advisories/32566

Vendor Advisory

http://www.ubuntu.com/usn/usn-663-1

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/50435

https://launchpad.net/bugs/287134

https://nvd.nist.gov/vuln/detail/CVE-2008-6792

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-6792

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-6792

EUVD