The loginDefaultEncrypt algorithm in loginLib in Wind River VxWorks prior to 6.9 does not properly support a large set of distinct possible passwords, which makes it easier for remote malicious users to obtain access via a (1) telnet, (2) rlogin, or (3) FTP session.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
windriver vxworks 5 |
||
windriver vxworks 6 |
||
windriver vxworks 5.5 |
||
windriver vxworks |
||
windriver vxworks 6.4 |