CVE-2001-1467

Name of the Vulnerable Software and Affected Versions expect versions 5.2.8

Description The issue concerns the mkpasswd utility in expect, which uses its process ID to seed the random number generator. This approach limits the range of possible seeds, making it easier for attackers to launch brute force password attacks.

Recommendations For expect version 5.2.8, consider using an alternative method to generate random numbers, or update to a version where this issue is resolved, however, at the moment, there is no information about a newer version that contains a fix for this vulnerability.