CVE

Id
41739  
CVE No.
CVE-2009-4304  
Status
Candidate  
Description
Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not use a random password salt in config.php, which makes it easier for attackers to conduct brute-force password guessing attacks.  
Phase
Assigned (20091211)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
458033 41739 CVE-2009-4304 CONFIRM:http://docs.moodle.org/en/Moodle_1.8.11_release_notes  View
458034 41739 CVE-2009-4304 CONFIRM:http://docs.moodle.org/en/Moodle_1.9.7_release_notes  View
458035 41739 CVE-2009-4304 CONFIRM:http://moodle.org/mod/forum/discuss.php?d=139111  View
458036 41739 CVE-2009-4304 FEDORA:FEDORA-2009-13040  View
458037 41739 CVE-2009-4304 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00704.html  View
458038 41739 CVE-2009-4304 FEDORA:FEDORA-2009-13065  View
458039 41739 CVE-2009-4304 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00730.html  View
458040 41739 CVE-2009-4304 FEDORA:FEDORA-2009-13080  View
458041 41739 CVE-2009-4304 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00751.html  View
458042 41739 CVE-2009-4304 BID:37244  View
458043 41739 CVE-2009-4304 URL:http://www.securityfocus.com/bid/37244  View
458044 41739 CVE-2009-4304 SECUNIA:37614  View
458045 41739 CVE-2009-4304 URL:http://secunia.com/advisories/37614  View
458046 41739 CVE-2009-4304 VUPEN:ADV-2009-3455  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
41517 JVNDB-2009-002524 Linux kernel の ext4_decode_error 関数におけるサービス運用妨害 (DoS) の脆弱性 Linux kernel の ext4 ファイルシステム の ext4_decode_error 関数には、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2009-4308 41739 7.1 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002524.html  View