Описание
Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by measuring the completion time of operations that verify (1) hashes or (2) passwords.
Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by measuring the completion time of operations that verify (1) hashes or (2) passwords.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-0009
- https://bugzilla.redhat.com/show_bug.cgi?id=578572
- http://archives.neohapsis.com/archives/bugtraq/2010-03/0267.html
- http://couchdb.apache.org/security.html
- http://secunia.com/advisories/39146
- http://www.osvdb.org/63350
- http://www.securityfocus.com/archive/1/510427/100/0/threaded
- http://www.securityfocus.com/bid/39116
Связанные уязвимости
Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by measuring the completion time of operations that verify (1) hashes or (2) passwords.
Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by measuring the completion time of operations that verify (1) hashes or (2) passwords.
Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by measuring the completion time of operations that verify (1) hashes or (2) passwords.
Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain ...