NuytsTech Security

CVE-2006-0584

by ·

The PSCipher function in PeopleSoft People Tools 8.4x uses PKCS #5 with a fixed DES key to store user passwords, which makes it easier for local users to guess passwords using a dictionary attack that compares output strings.

Date published : 2006-02-07

http://www.securityfocus.com/bid/16507

http://www.securityfocus.com/archive/1/424086/100/0/threaded

Tags: