Required CVE Record Information
Description
The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predictable keys.
References 4 Total
- osvdb.org: 1355 vdb-entry
- cert.org: CA-2000-09 third-party-advisory
- archives.neohapsis.com: 20000523 Key Generation Security Flaw in PGP 5.0 mailing-list
- securityfocus.com: 1251 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- osvdb.org: 1355 vdb-entryx_transferred
- cert.org: CA-2000-09 third-party-advisoryx_transferred
- archives.neohapsis.com: 20000523 Key Generation Security Flaw in PGP 5.0 mailing-listx_transferred
- securityfocus.com: 1251 vdb-entryx_transferred