2 matches found
CVE-2013-1649
Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 uses the crypt and SHA-1 algorithms for password hashing, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force attack...
CVE-2013-1649
Open-Xchange Server 6 is affected by CVE-2013-1649. The vulnerability concerns the use of crypt and SHA-1 for password hashing in Open-Xchange Server versions: before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14. The underlying issue is weak password hashing, enabling context-depend...