Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection.
References
Link | Resource |
---|---|
http://markmail.org/message/3hshl26omwjo6c5i | Mailing List Third Party Advisory |
http://www.securityfocus.com/bid/99587 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apache
Published: 2017-07-14T15:00:00
Updated: 2017-07-15T09:57:01
Reserved: 2017-04-11T00:00:00
Link: CVE-2017-7673
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-07-17T13:18:29.813
Modified: 2019-10-03T00:03:26.223
Link: CVE-2017-7673
JSON object: View
Redhat Information
No data.