3 matches found
CVE-2009-2158
account-recover.php in TorrentTrader Classic 1.09 chooses random passwords from an insufficiently large set, which makes it easier for remote attackers to obtain a password via a brute-force attack...
CVE-2009-2158
account-recover.php in TorrentTrader Classic 1.09 chooses random passwords from an insufficiently large set, which makes it easier for remote attackers to obtain a password via a brute-force attack...
CVE-2009-2158
Summary (CVE-2009-2158). TorrentTrader Classic 1.09 is affected by an issue in account-recover.php where random passwords are chosen from an insufficiently large set, making brute-force password recovery feasible for remote attackers. The vulnerability stems from a weak password-generation approa...