2 matches found
CVE-2009-2158
Summary (CVE-2009-2158). TorrentTrader Classic 1.09 is affected by an issue in account-recover.php where random passwords are chosen from an insufficiently large set, making brute-force password recovery feasible for remote attackers. The vulnerability stems from a weak password-generation approa...
PT-2009-4610 · Torrenttrader · Torrenttrader Classic
Name of the Vulnerable Software and Affected Versions: TorrentTrader Classic version 1.09 Description: The issue allows remote attackers to obtain a password via a brute-force attack because the account-recover.php file chooses random passwords from an insufficiently large set. Recommendations: F...