CVE-2000-0535
Severity:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/06/2000
Last modified:
10/09/2008
Description
OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak keys which may be more easily broken.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:openssl:openssl:0.9.4:*:*:*:*:*:*:* | ||
cpe:2.3:o:freebsd:freebsd:4.0:alpha:*:*:*:*:*:* | ||
cpe:2.3:o:freebsd:freebsd:5.0:alpha:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page