OpenSSL Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability - CVE-2008-0166 - Vulnerability Database

OpenSSL

OpenSSL Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability - CVE-2008-0166

High

Reference: CVE-2008-0166

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-0166

Title: OpenSSL Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) Vulnerability

Overview:

OpenSSL 0.9.8c-1 up to versions before 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers which makes it easier for remote attackers to conduct brute force guessing attacks against cryptographic keys.