CVE

Id
32000  
CVE No.
CVE-2008-1883  
Status
Candidate  
Description
The server in Blackboard Academic Suite 7.x stores MD5 password hashes that are provided directly by clients, which makes it easier for remote attackers to access accounts via a modified client that skips the javascript/md5.js hash calculation, and instead sends an arbitrary MD5 string.  
Phase
Assigned (20080418)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
345182 32000 CVE-2008-1883 BUGTRAQ:20080326 Blackboard Academic Suite Multiple XSS Vulnerabilities  View
345183 32000 CVE-2008-1883 URL:http://www.securityfocus.com/archive/1/archive/1/490096/100/0/threaded  View
345184 32000 CVE-2008-1883 MISC:http://secskill.wordpress.com/2008/03/27/hacking-blackboard-academic-suite-2/  View
345185 32000 CVE-2008-1883 MISC:http://www.scribd.com/doc/2363025/Hacking-Blackboard-Academic-Suite  View
345186 32000 CVE-2008-1883 SREASON:3810  View
345187 32000 CVE-2008-1883 URL:http://securityreason.com/securityalert/3810  View
345188 32000 CVE-2008-1883 XF:blackboard-client-information-disclosure(41935)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
46983 JVNDB-2008-002293 Python の PyString_FromStringAndSize 関数における任意のコードを実行される脆弱性 Python には、PyString_FromStringAndSize 関数に関する不備があるため、任意のコードを実行される脆弱性が存在します。 CVE-2008-1887 32000 9.3 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002293.html  View