Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2003-1376

WinZip 8.0 uses weak random number generation for password protected ZIP files, which allows local users to brute force the encryption keys and extract the data from the zip file by guessing the state of the stream coder.

  • Published: Dec 31, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2003-1376
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
winzip / winzip 8.0 8.0.x