NuytsTech Security

CVE-2006-0898

by ·

Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.

Date published : 2006-02-25

http://www.securityfocus.com/bid/16802

http://www.securityfocus.com/archive/1/425966/100/0/threaded

Tags: