Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2012-5507

Опубликовано: 30 сент. 2014
Источник: debian

Описание

AccessControl/AuthEncoding.py in Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to obtain passwords via vectors involving timing discrepancies in password validation.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
zope2.12fixed2.12.26-1package

Примечания

  • https://plone.org/products/plone/security/advisories/20121106/23

Связанные уязвимости

redhat логотип

CVE-2012-5507

redhat
больше 13 лет назад

AccessControl/AuthEncoding.py in Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to obtain passwords via vectors involving timing discrepancies in password validation.

nvd логотип

CVE-2012-5507

nvd
больше 11 лет назад

AccessControl/AuthEncoding.py in Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to obtain passwords via vectors involving timing discrepancies in password validation.

github логотип

GHSA-3qpr-7rmg-73v8

CVSS3: 7.5
github
больше 7 лет назад

Plone and Zope2 affected by Race Condition