← CVECheck
HomeVulnerabilities

CVE-2001-0967 — CRITICAL severity vulnerability (Knox Arkeia server 4.2, and possibly other versions, uses a)

Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing.

CVE IDCVE-2001-0967
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-916
StatusModified
Published2001-08-31
Last modified2026-04-16
DescriptionKnox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →