Lucene search
FreeBSD09066828-2EF1-11DD-A0D8-0016D325A0EDHistoryMay 30, 2008 - 12:00 a.m.
ikiwiki -- empty password security hole
2008-05-3000:00:00
vuxml.freebsd.org
17
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
87.1%
The ikiwiki development team reports:
This hole allowed ikiwiki to accept logins using empty
passwords to openid accounts that didn’t use a password.
Upgrading to a non-vulnerable ikiwiki version immediatly is
recommended if your wiki allows both password and openid
logins.
References
Related
cvelist
cvelist
CVE-2008-0169
2008-06-03 15:00:00
nvd
nvd
CVE-2008-0169
2008-06-03 15:32:00
ubuntucve
ubuntucve
CVE-2008-0169
2008-06-03 00:00:00
openvas
openvas
FreeBSD Ports: ikiwiki
2008-09-04 00:00:00
FreeBSD Ports: ikiwiki
2008-09-04 00:00:00
debiancve
debiancve
CVE-2008-0169
2008-06-03 15:32:00
cve
cve
CVE-2008-0169
2008-06-03 15:32:00
seebug
seebug
ikiwiki空口令绕过认证漏洞
2008-06-04 00:00:00
nessus
nessus
prion
prion
Authentication flaw
2008-06-03 15:32:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
87.1%
Related for 09066828-2EF1-11DD-A0D8-0016D325A0ED