18 matches found
EUVD-2013-2167
Malware in sbrugna...
EUVD-2013-2088
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2013-2120
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The %password... macro in pastemacroexpander.cpp in the KDE Paste Applet before 4.10.5 in kdeplasma- addons does not properly generate passwords, which allows...
SUSE CVE-2013-2213
The KRandom::random function in KDE Paste Applet after 4.10.5 in kdeplasma-addons uses the GNU C Library rand function's linear congruential generator, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by predicting the generator output...
CVE-2013-2120
The %password... macro in pastemacroexpander.cpp in the KDE Paste Applet before 4.10.5 in kdeplasma-addons does not properly generate passwords, which allows context-dependent attackers to bypass authentication via a brute-force attack...
CVE-2013-2120
The %password... macro in pastemacroexpander.cpp in the KDE Paste Applet before 4.10.5 in kdeplasma-addons does not properly generate passwords, which allows context-dependent attackers to bypass authentication via a brute-force attack...
CVE-2013-2213
The KRandom::random function in KDE Paste Applet after 4.10.5 in kdeplasma-addons uses the GNU C Library rand function's linear congruential generator, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by predicting the generator output...
Authentication flaw
The %password... macro in pastemacroexpander.cpp in the KDE Paste Applet before 4.10.5 in kdeplasma-addons does not properly generate passwords, which allows context-dependent attackers to bypass authentication via a brute-force attack...
Design/Logic Flaw
The KRandom::random function in KDE Paste Applet after 4.10.5 in kdeplasma-addons uses the GNU C Library rand function's linear congruential generator, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by predicting the generator output...
CVE-2013-2213
The KRandom::random function in KDE Paste Applet after 4.10.5 in kdeplasma-addons uses the GNU C Library rand function's linear congruential generator, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by predicting the generator output...
UBUNTU-CVE-2013-2120
The %password... macro in pastemacroexpander.cpp in the KDE Paste Applet before 4.10.5 in kdeplasma-addons does not properly generate passwords, which allows context-dependent attackers to bypass authentication via a brute-force attack...
UBUNTU-CVE-2013-2213
The KRandom::random function in KDE Paste Applet after 4.10.5 in kdeplasma-addons uses the GNU C Library rand function's linear congruential generator, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by predicting the generator output...
CVE-2013-2213
The CVE-2013-2213 entry applies to KDE Paste Applet (kdeplasma-addons) post-4.10.5, where KRandom::random uses the GNU C Library rand()’s linear congruential generator. This weak PRNG makes it feasible for context-dependent attackers to predict output and compromise cryptographic protections as d...
CVE-2013-2120
The %password... macro in pastemacroexpander.cpp in the KDE Paste Applet before 4.10.5 in kdeplasma-addons does not properly generate passwords, which allows context-dependent attackers to bypass authentication via a brute-force attack...
CVE-2013-2120
The %password... macro in pastemacroexpander.cpp in the KDE Paste Applet before 4.10.5 in kdeplasma-addons does not properly generate passwords, which allows context-dependent attackers to bypass authentication via a brute-force attack...
CVE-2013-2120
CVE-2013-2120 affects the KDE Paste Applet in kdeplasma-addons up to version prior to 4.10.5 . The vulnerability stems from the %{password(...)} macro in pastemacroexpander.cpp, which does not generate passwords securely, allowing context-dependent attackers to bypass authentication via a brute-f...
KDE Paste applet weak password generation
Weak PRNG...
KDE Paste Applet
The paste applet included with kdeplasma-addons allows you to define macros that will copy some generated data into the clipboard, using simple macros to define the source and format of the data. The available macros include password... which generates "random" passwords. Here is the code that...