CVE-2009-4304

Опубликовано: 16 дек. 2009

Источник: ubuntu

Приоритет: medium

CVSS2: 7.5

Описание

Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not use a random password salt in config.php, which makes it easier for attackers to conduct brute-force password guessing attacks.

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	not-affected	1.9.9.dfsg2-6
hardy	ignored	end of life
intrepid	ignored	end of life, was needed
jaunty	ignored	end of life
karmic	ignored	end of life
lucid	ignored	end of life
maverick	ignored	end of life
natty	not-affected	1.9.9.dfsg2-2
oneiric	not-affected	1.9.9.dfsg2-3

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2009-4304

7.5 High

CVSS2

Связанные уязвимости

CVE-2009-4304

redhat

почти 16 лет назад

Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not use a random password salt in config.php, which makes it easier for attackers to conduct brute-force password guessing attacks.

CVE-2009-4304

nvd

почти 16 лет назад

Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not use a random password salt in config.php, which makes it easier for attackers to conduct brute-force password guessing attacks.

CVE-2009-4304

debian

почти 16 лет назад

Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not use a random pa ...

GHSA-gmx9-p92v-48wf

github

больше 3 лет назад

Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not use a random password salt in config.php, which makes it easier for attackers to conduct brute-force password guessing attacks.

7.5 High

CVSS2

CVE-2009-4304

Описание

Пакет moodle

Ссылки на источники

Связанные уязвимости