User: Password:
Subscribe / Log in / New account

perl-Authen-Captcha: guessable captchas

Package(s):perl-Authen-Captcha CVE #(s):
Created:April 7, 2014 Updated:April 9, 2014
Description: From the Fedora advisory:

An issue in previous versions of perl-Authen-Captcha is that the generated public string (file name of the picture) for the captcha is merely a checksum of the secret string. It is trivial to break such short strings even using google instead of a rainbow table.

Version 1.024 of the module fixes this.

Mageia MGASA-2014-0167 perl-Authen-Captcha 2014-04-09
Fedora FEDORA-2014-4454 perl-Authen-Captcha 2014-04-05
Fedora FEDORA-2014-4455 perl-Authen-Captcha 2014-04-05

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds