Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.12 views

Mageia: Security Advisory (MGASA-2014-0101)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.9CVSS6.5AI score0.00884EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2014/04/16 12:0 a.m.19 views

Fedora 20 : oath-toolkit-2.4.1-3.fc20 (2014-2875)

This is an update that adds xmlsec1-openssl to requirements. This is an update that fixes CVE-2013-7322. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much ...

4.9CVSS5.4AI score0.00884EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2014/04/16 12:0 a.m.17 views

Fedora Update for oath-toolkit FEDORA-2014-2875

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.9CVSS6.5AI score0.00884EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/03/17 12:0 a.m.19 views

Mandriva Linux Security Advisory : oath-toolkit (MDVSA-2014:061)

Updated oath-toolkit packages fix security vulnerability : It was found that comments lines starting with a hash in /etc/users.oath could prevent one-time-passwords OTP from being invalidated, leaving the OTP vulnerable to replay attacks CVE-2013-7322. %NASLMINLEVEL 70300 C Tenable Network...

4.9CVSS5.3AI score0.00884EPSS
Exploits0References2
OSV
OSV
added 2014/03/09 1:16 p.m.8 views

CVE-2013-7322

usersfile.c in liboath in OATH Toolkit before 2.4.1 does not properly handle lines containing an invalid one-time-password OTP type and a user name in /etc/users.oath, which causes the wrong line to be updated when invalidating an OTP and allows context-dependent attackers to conduct replay...

6.2AI score
Exploits0References6
CVE
CVE
added 2014/03/07 8:0 p.m.45 views

CVE-2013-7322

CVE-2013-7322 affects the OATH Toolkit, specifically the liboath component (usersfile.c). The issue arises when processing an invalid OTP type and a username in /etc/users.oath, causing the wrong line to be updated during OTP invalidation. This can enable context-dependent attackers to perform re...

4.9CVSS6.2AI score0.00884EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/02/24 12:0 a.m.22 views

Fedora 19 : oath-toolkit-2.4.1-1.fc19 (2014-2534)

This is an update that fixes CVE-2013-7322. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

4.9CVSS5.4AI score0.00884EPSS
Exploits0References3
Rows per page
Query Builder