Vulnerabilities > CVE-2006-0584 - Unspecified vulnerability in Peoplesoft Peopletools
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The PSCipher function in PeopleSoft People Tools 8.4x uses PKCS #5 with a fixed DES key to store user passwords, which makes it easier for local users to guess passwords using a dictionary attack that compares output strings.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 7 |