TGCaptcha2 version 0.3.0 is vulnerable to a replay attack due to a missing nonce allowing attackers to use a single solved CAPTCHA multiple times.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1316083 | Issue Tracking Third Party Advisory VDB Entry |
https://patrick.uiterwijk.org/2016/03/09/fedora-spam-dwf-2016-89000/ | Technical Description Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2016-10-25T14:00:00
Updated: 2016-10-25T11:57:01
Reserved: 2016-10-24T00:00:00
Link: CVE-2016-1000032
JSON object: View
NVD Information
Status : Modified
Published: 2016-10-25T14:29:01.667
Modified: 2017-01-19T02:59:02.030
Link: CVE-2016-1000032
JSON object: View
Redhat Information
No data.
CWE