CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Bell Communications Research: Security Vulnerabilities

CVE-2001-1169

keyinit in S/Key does not require authentication to initialize a one-time password sequence, which allows an attacker who has gained privileges to a user account to create new one-time passwords for use in other activities that may use S/Key authentication, such as sudo.

CVSS Score

7.5

EPSS Score

0.005

Published

2001-09-02

Page 1

Vulnerabilities

Vulnerable Software

Bell Communications Research: Security Vulnerabilities

Products

Pricing

Contact Us