CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2003-1376

WinZip 8.0 uses weak random number generation for password protected ZIP files, which allows local users to brute force the encryption keys and extract the data from the zip file by guessing the state of the stream coder.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.8%

CVSS Severity

CVSS v2 Score 4.6

References

http://securityreason.com/securityalert/3265
http://www.securityfocus.com/archive/1/311059
http://www.securityfocus.com/bid/6805
https://exchange.xforce.ibmcloud.com/vulnerabilities/11296
http://securityreason.com/securityalert/3265
http://www.securityfocus.com/archive/1/311059
http://www.securityfocus.com/bid/6805
https://exchange.xforce.ibmcloud.com/vulnerabilities/11296

Products affected by CVE-2003-1376

Winzip » Winzip » Version: 8.0

cpe:2.3:a:winzip:winzip:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-1376

Products

Pricing

Contact Us