Don LibesCVEs & Vulnerabilities
2 CVEs affecting Don Libes products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
expect 38
CVE-2001-1374HIGH
expect before 5.32 searches for its libraries in /var/tmp before other directories, which could allow local users to gain root privileges via a Trojan horse library that is accessed by mkpasswd.
19 Jul 2001
7.2
CVSS
CVE-2001-1467HIGH
mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, seeds its random number generator with its process ID, which limits the space of possible seeds and makes it easier for attackers to conduct brute force password attacks.
11 Apr 2001
7.5
CVSS
← PrevPage 1 / 1Next →