Secunia
Login
|
|
CVE Reference: CVE-2011-0009 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2011-0009 |
|
|
Description: Best Practical Solutions RT 3.x before 3.8.9rc2 and 4.x before 4.0.0rc4 uses the MD5 algorithm for password hashes, which makes it easier for context-dependent attackers to determine cleartext passwords via a brute-force attack on the database. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA43438 OSVDB 70661 MLIST http://lists.bestpractical.com/pipermail/rt-announce/2011-January/000185.html FEDORA http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054740.html DEBIAN http://www.debian.org/security/2011/dsa-2150 CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610850 BID 45959 |
|
| Return to the previous page. |
