Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The CryptGenRandom function in Microsoft Windows 2000 generates predictable values, which makes it easier for context-dependent attackers to reduce the effectiveness of cryptographic mechanisms, as demonstrated by attacks on (1) forward security and (2) backward security, related to use of eight instances of the RC4 cipher, and possibly a related issue to CVE-2007-3898.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows不安全随机数生成器信息泄露漏洞
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。 Windows的CryptGenRandom()函数中存在加密漏洞,可能会生成不安全的随机数导致可预测的加密密钥。 如果攻击者本地登录到系统的话,就可能计算出前一个和下一个加密密钥,导致破解加密信息。例如,银行站点可能要求键入口令或信用卡号,然后随机数生成器就会创建一个随机加密密钥来加密通讯,因此攻击者破解了这个加密就可以获得银行帐号信息。
CVSS Information
N/A
Vulnerability Type
N/A