{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-0898", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "20899", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20899" }, { "name": "RHSA-2008:0630", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2008-0630.html" }, { "name": "31493", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/31493" }, { "name": "GLSA-200603-15", "refsource": "GENTOO", "url": "http://www.gentoo.org/security/en/glsa/glsa-200603-15.xml" }, { "name": "19187", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19187" }, { "name": "488", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/488" }, { "name": "DSA-996", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2006/dsa-996" }, { "name": "20060223 Vulnerability in Crypt::CBC Perl module, versions <= 2.16", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/425966/100/0/threaded" }, { "name": "SUSE-SR:2006:015", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2006_38_security.html" }, { "name": "19303", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19303" }, { "name": "18755", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18755" }, { "name": "16802", "refsource": "BID", "url": "http://www.securityfocus.com/bid/16802" }, { "name": "RHSA-2008:0261", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2008-0261.html" }, { "name": "crypt-cbc-header-weak-encryption(24954)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24954" } ] } }