CVE-2006-0898
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.
Date published : 2006-02-25
http://www.securityfocus.com/bid/16802
http://www.securityfocus.com/archive/1/425966/100/0/threaded