Vulnerabilities > CVE-2006-1833 - Unspecified vulnerability in Netbsd

CVSS 2.6 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

high complexity

netbsd

NVD

Published: 2006-04-19

Updated: 2017-07-20

Summary

Intel RNG Driver in NetBSD 1.6 through 3.0 may incorrectly detect the presence of the pchb interface, which will cause it to always generate the same random number, which allows remote attackers to more easily crack encryption keys generated from the interface.

Vulnerable Configurations

Part	Description	Count
OS	Netbsd Netbsd Netbsd 1.6 Netbsd Netbsd 1.6.1 Netbsd Netbsd 1.6.2 Netbsd Netbsd 2.0 Netbsd Netbsd 2.0.1 Netbsd Netbsd 2.0.2 Netbsd Netbsd 2.0.3 Netbsd Netbsd 2.1 Netbsd Netbsd 3.0	10

References

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-009.txt.asc
http://secunia.com/advisories/19585
http://securitytracker.com/id?1015907
http://www.osvdb.org/24577
http://www.securityfocus.com/bid/17496
https://exchange.xforce.ibmcloud.com/vulnerabilities/25786