Lucene search
Ubuntu.comUB:CVE-2013-1941HistoryJun 04, 2014 - 12:00 a.m.
CVE-2013-1941
2014-06-0400:00:00
ubuntu.com
ubuntu.com
8
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
51.9%
The installation routine in ownCloud Server before 4.0.14, 4.5.x before
4.5.9, and 5.0.x before 5.0.4 uses the time function to seed the generation
of the PostgreSQL database user password, which makes it easier for remote
attackers to guess the password via a brute force attack.
Notes
| Author | Note |
|---|---|
| mdeslaur | owncloud packages in Ubuntu are now empty |
Related
cvelist
cvelist
CVE-2013-1941
2014-06-04 14:00:00
owncloud
owncloud
Server: Insecure database password generator
2013-04-11 11:42:22
Insecure database password generator - ownCloud
2013-04-11 17:57:48
cve
cve
CVE-2013-1941
2014-06-04 14:55:03
prion
prion
Design/Logic Flaw
2014-06-04 14:55:00
nvd
nvd
CVE-2013-1941
2014-06-04 14:55:03
openvas
openvas
ownCloud Multiple Vulnerabilities (oC-SA-2013-014, oC-SA-2013-015)
2014-07-03 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
51.9%
Related for UB:CVE-2013-1941