← back
CVE-2005-0106

CVE-2005-0106

EPSS 0.3%
SSLeay.pm in libnet-ssleay-perl before 1.25 uses the /tmp/entropy file for entropy if a source is not set in the EGD_PATH variable, which allows local users to reduce the cryptographic strength of certain operations by modifying the file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/18639https://usn.ubuntu.com/113-1/http://www.mandriva.com/security/advisories?name=MDKSA-2006:023http://www.securityfocus.com/bid/13471