Noah Grey Greymatter Password Disclosure Vulnerability
BID:12182
Info
Noah Grey Greymatter Password Disclosure Vulnerability
| Bugtraq ID: | 12182 |
| Class: | Race Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 06 2005 12:00AM |
| Updated: | Jan 06 2005 12:00AM |
| Credit: | The discovery of this vulnerability is credited to FraMe <[email protected]>. |
| Vulnerable: |
Noah Grey Greymatter 1.3 |
| Not Vulnerable: | |
Discussion
Noah Grey Greymatter Password Disclosure Vulnerability
Noah Grey greymatter 3.1 is reportedly affected by a password disclosure vulnerability. This issue is due to the application creating a temporary file, which includes the username and plaintext password of a user when greymatter rebuilds a 'main entry pages' section.
Noah Grey greymatter 3.1 is reportedly affected by a password disclosure vulnerability. This issue is due to the application creating a temporary file, which includes the username and plaintext password of a user when greymatter rebuilds a 'main entry pages' section.
Exploit / POC
Noah Grey Greymatter Password Disclosure Vulnerability
No exploit is required.
No exploit is required.
Solution / Fix
Noah Grey Greymatter Password Disclosure Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Noah Grey Greymatter Password Disclosure Vulnerability
References:
References:
- Greymatter Product Homepage (Noah Grey)
- Greymatter: Some security flaws (FraMe (frame at kernelpanik.org))