Vulnerability Details CVE-2006-1833
Intel RNG Driver in NetBSD 1.6 through 3.0 may incorrectly detect the presence of the pchb interface, which will cause it to always generate the same random number, which allows remote attackers to more easily crack encryption keys generated from the interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.4%
CVSS Severity
CVSS v2 Score 2.6
References
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-009.txt.asc
- http://secunia.com/advisories/19585
- http://securitytracker.com/id?1015907
- http://www.osvdb.org/24577
- http://www.securityfocus.com/bid/17496
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25786
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-009.txt.asc
- http://secunia.com/advisories/19585
- http://securitytracker.com/id?1015907
- http://www.osvdb.org/24577
- http://www.securityfocus.com/bid/17496
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25786
Products affected by CVE-2006-1833
-
cpe:2.3:o:netbsd:netbsd:1.6
-
cpe:2.3:o:netbsd:netbsd:1.6.1
-
cpe:2.3:o:netbsd:netbsd:1.6.2
-
cpe:2.3:o:netbsd:netbsd:2.0
-
cpe:2.3:o:netbsd:netbsd:2.0.1
-
cpe:2.3:o:netbsd:netbsd:2.0.2
-
cpe:2.3:o:netbsd:netbsd:2.0.3
-
cpe:2.3:o:netbsd:netbsd:2.1
-
cpe:2.3:o:netbsd:netbsd:3.0