Vulnerability Details CVE-2006-0584
The PSCipher function in PeopleSoft People Tools 8.4x uses PKCS #5 with a fixed DES key to store user passwords, which makes it easier for local users to guess passwords using a dictionary attack that compares output strings.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.0%
CVSS Severity
CVSS v2 Score 2.1
References
Products affected by CVE-2006-0584
-
cpe:2.3:a:peoplesoft:peopletools:8.4
-
cpe:2.3:a:peoplesoft:peopletools:8.40
-
cpe:2.3:a:peoplesoft:peopletools:8.41
-
cpe:2.3:a:peoplesoft:peopletools:8.42
-
cpe:2.3:a:peoplesoft:peopletools:8.43
-
cpe:2.3:a:peoplesoft:peopletools:8.45.5
-
cpe:2.3:a:peoplesoft:peopletools:8.46.3