VULHUB ™

It is reported that Crypt::ECB is susceptible to a weakness when processing certain types of input. This is due to a failure of the module to properly validate user-supplied input data. This weakness may potentially result in incorrect encryption and decryption of input data. If, for example, this Perl module were to be used in an application to store encrypted versions of passwords, this weakness may result in incorrect, and shorter passwords succeeding during authentication checks. This may aid attackers by simplifying passwords so brute force attacks are more likely to succeed. Other attacks may also be possible depending on the particular implementation of applications that utilize this Perl module.

It is reported that Crypt::ECB is susceptible to a weakness when processing certain types of input. This is due to a failure of the module to properly validate user-supplied input data. This weakness may potentially result in incorrect encryption and decryption of input data. If, for example, this Perl module were to be used in an application to store encrypted versions of passwords, this weakness may result in incorrect, and shorter passwords succeeding during authentication checks. This may aid attackers by simplifying passwords so brute force attacks are more likely to succeed. Other attacks may also be possible depending on the particular implementation of applications that utilize this Perl module.