Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/99587 | Third Party Advisory VDB Entry |
http://markmail.org/message/3hshl26omwjo6c5i | Mailing List Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2017-07-17 06:18
Updated : 2019-10-02 17:03
NVD link : CVE-2017-7673
Mitre link : CVE-2017-7673
JSON object : View
CWE
Products Affected
apache
- openmeetings