Description
The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that use the same plaintext.
Remediation
References
Related Vulnerabilities
PHP Resource Management Errors Vulnerability (CVE-2006-1991)
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-38276)
WebLogic CVE-2022-21292 Vulnerability (CVE-2022-21292)
MySQL CVE-2014-4240 Vulnerability (CVE-2014-4240)
Jboss EAP Improper Input Validation Vulnerability (CVE-2019-12400)