Description

The installation routine in ownCloud Server before 4.0.14, 4.5.x before 4.5.9, and 5.0.x before 5.0.4 uses the time function to seed the generation of the PostgreSQL database user password, which makes it easier for remote attackers to guess the password via a brute force attack.

Remediation

References

CVE-2013-1941

Related Vulnerabilities

WordPress Plugin Backup Migration Remote Code Execution (1.3.7)

Sqlite CVE-2020-13631 Vulnerability (CVE-2020-13631)

WordPress Plugin Contact Form DB CSV Injection (2.10.32)

WordPress Plugin WP Insightly for Contact Form 7 and Ninja Forms Cross-Site Scripting (1.0.7)

Apache Tomcat 7PK - Security Features Vulnerability (CVE-2002-0493)

Severity

Medium

Classification

CVE-2013-1941

Tags

Missing Update Known Vulnerabilities