NVD

Id
7148  
Name
CVE-2011-0009  
Description
Best Practical Solutions RT 3.x before 3.8.9rc2 and 4.x before 4.0.0rc4 uses the MD5 algorithm for password hashes, which makes it easier for context-dependent attackers to determine cleartext passwords via a brute-force attack on the database.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2011-01-25  
Modified Date
2011-07-20  
Seq
2011-0009  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
39982 7148 CVE-2011-0009 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610850  View
39983 7148 CVE-2011-0009 [rt-announce] 20110119 Security vulnerability in RT 3.0 and up  View
39984 7148 CVE-2011-0009 FEDORA-2011-1677  View
39985 7148 CVE-2011-0009 DSA-2150  View
39986 7148 CVE-2011-0009 45959  View
39987 7148 CVE-2011-0009 ADV-2011-0190  View
39988 7148 CVE-2011-0009 ADV-2011-0475  View
39989 7148 CVE-2011-0009 ADV-2011-0576  View
39990 7148 CVE-2011-0009 https://bugzilla.redhat.com/show_bug.cgi?id=672250  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
33800 JVNDB-2011-004042 Best Practical Solutions RT における平分パスワードを判定される脆弱性 Best Practical Solutions RT には、パスワードハッシュに MD5 アレゴリズムを使うため、平文パスワードを判定されやすい脆弱性が存在します。 CVE-2011-0009 47916 CVE-2011-0009 7148 4.3 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-004042.html 2011-01-25 2012-03-27 View