CVE-2009-4810

描述

The Secure Remote Password (SRP) implementation in Samhain before 2.5.4 does not check for a certain zero value where required by the protocol, which allows remote attackers to bypass authentication via crafted input.

受影響套件(1)

• Debian/samhainfrom 0, < 2.5.4-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-4810