Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1833

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-1833
Last Modified 05 Sep 2008 05:02:57
Published 19 Apr 2006 12:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-1833

Summary

Intel RNG Driver in NetBSD 1.6 through 3.0 may incorrectly detect the presence of the pchb interface, which will cause it to always generate the same random number, which allows remote attackers to more easily crack encryption keys generated from the interface.

Vulnerable Systems

Operating System

  • Netbsd 1.6

  • Netbsd 1.6.1

  • Netbsd 1.6.2

  • Netbsd 2.0

  • Netbsd 2.0.1

  • Netbsd 2.0.2

  • Netbsd 2.0.3

  • Netbsd 2.1

  • Netbsd 3.0


References

OSVDB - 24577

SECTRACK - 1015907

SECUNIA - 19585

NETBSD - NetBSD-SA2006-009

XF - netbsd-intel-rng-security-bypass(25786)

BID - 17496


Last Updated: 27 May 2016 10:42:14