CVE-2006-4021 — Scatterchat vulnerability

3 documents3 sources

Severity

2.6LOWNVD

EPSS

0.3%

top 50.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Scatterchat

Timeline

PublishedAug 17

Latest updateMay 1

Description

The cryptographic module in ScatterChat 1.0.x allows attackers to identify patterns in large numbers of messages by identifying collisions using a birthday attack on the custom padding mechanism for ECB mode encryption.

CVSS vector

AV:N/AC:H/C:P/I:N/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages1 packages

▶NVDscatterchat/scatterchat1.0.1

🔴Vulnerability Details

GHSA

GHSA-r4jq-cqww-9m6q: The cryptographic module in ScatterChat 1↗2022-05-01

▶

CVEList

CVE-2006-4021: The cryptographic module in ScatterChat 1↗2006-08-17

▶