CVE-2001-1190 : The default PAM files included with passwd in Mandrake Linux 8.1 do not support MD5 passwords, which could result in a l

The default PAM files included with passwd in Mandrake Linux 8.1 do not support MD5 passwords, which could result in a lower level of password security than intended.

Published 2001-12-12 05:00:00

Updated 2008-09-05 20:25:55

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2001-1190

Probability of exploitation activity in the next 30 days: 0.05%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 17 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2001-1190

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2001-1190

http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-091.php3

Patch
http://www.iss.net/security_center/static/7706.php

Patch;Vendor Advisory
http://www.securityfocus.com/bid/3683

Patch;Vendor Advisory

Products affected by CVE-2001-1190

Mandrakesoft » Mandrake Linux » Version: 8.1
cpe:2.3:o:mandrakesoft:mandrake_linux:8.1:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2001-1190

Exploit prediction scoring system (EPSS) score for CVE-2001-1190

CVSS scores for CVE-2001-1190

References for CVE-2001-1190

Products affected by CVE-2001-1190