The Secure Remote Password (SRP) implementation in Samhain before 2.5.4 does not check for a certain zero value where required by the protocol, which allows remote attackers to bypass authentication via crafted input.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-04-23T14:00:00Z

Updated: 2024-09-17T01:50:50.812Z

Reserved: 2010-04-23T00:00:00Z

Link: CVE-2009-4810

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-04-23T14:30:01.103

Modified: 2024-11-21T01:10:31.153

Link: CVE-2009-4810

cve-icon Redhat

No data.