Lucene search
RedhatCVELIST:CVE-2013-6386HistoryDec 07, 2013 - 9:00 p.m.
CVE-2013-6386
2013-12-0721:00:00
redhat
www.cve.org
Drupal 6.x before 6.29 and 7.x before 7.24 uses the PHP mt_rand function to generate random numbers, which uses predictable seeds and allows remote attackers to predict security strings and bypass intended restrictions via a brute force attack.
Related
cve
cve
CVE-2013-6386
2013-12-07 21:55:10
nvd
nvd
CVE-2013-6386
2013-12-07 21:55:10
ubuntucve
ubuntucve
CVE-2013-6386
2013-12-07 00:00:00
debiancve
debiancve
CVE-2013-6386
2013-12-07 21:55:00
prion
prion
Security feature bypass
2013-12-07 21:55:00
openvas
openvas
Debian Security Advisory DSA 2828-1 (drupal6 - several vulnerabilities)
2013-12-28 00:00:00
Debian: Security Advisory (DSA-2828-1)
2013-12-27 00:00:00
Debian Security Advisory DSA 2804-1 (drupal7 - several vulnerabilities)
2013-11-26 00:00:00
debian
debian
[SECURITY] [DSA 2828-1] drupal6 security update
2013-12-28 10:23:54
[SECURITY] [DSA 2828-1] drupal6 security update
2013-12-28 10:23:54
[SECURITY] [DSA 2804-1] drupal7 security update
2013-11-26 16:50:04
nessus
nessus
Drupal 6.x < 6.29 Multiple Vulnerabilities
2013-11-30 00:00:00
Debian DSA-2828-1 : drupal6 - several vulnerabilities
2013-12-30 00:00:00
Drupal 7.x < 7.24 Multiple Vulnerabilities
2013-11-30 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: drupal6-6.29-1.fc20
2013-12-14 03:31:43
[SECURITY] Fedora 20 Update: drupal7-7.24-1.fc20
2013-12-14 03:03:56
[SECURITY] Fedora 19 Update: drupal7-7.24-1.fc19
2013-12-02 09:37:15
mageia
mageia
Updated drupal package fixes security vulnerabilities
2013-12-01 01:35:13
drupal
drupal
SA-CORE-2013-003 - Drupal core - Multiple vulnerabilities
2013-11-20 00:00:00
securityvulns
securityvulns
[ MDVSA-2013:287 ] drupal
2013-12-09 00:00:00