RSS   Vulnerabilities for 'Py-bcrypt'   RSS

2020-01-28
 
CVE-2013-1895

CWE-307
 

 
The py-bcrypt module before 0.3 for Python does not properly handle concurrent memory access, which allows attackers to bypass authentication via multiple authentication requests, which trigger the password hash to be overwritten.

 

 >>> Vendor: Python 28 Products
Python
Virtualenv
Beaker
Keyring
PIP
Setuptools
RPLY
Pyxdg
Pillow
Python-gnupg
Requests
Tgcaptcha2
Python priority library
Hpack
Hyper
Urllib3
Openpyxl
Tablib
Simplejson
Pykerberos
Pypiserver
RSA
Novajoin
Pyxml
Typed ast
Py-bcrypt
Jw.util
Pybluemonday


Copyright 2024, cxsecurity.com

 

Back to Top