{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-05-22T00:00:00", "descriptions": [{"lang": "en", "value": "The vulnerable-passwords script in Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 does not update the password-hash algorithm for disabled user accounts, which makes it easier for context-dependent attackers to determine cleartext passwords, and possibly use these passwords after accounts are re-enabled, via a brute-force attack on the database. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-0009."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2012-09-29T09:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[rt-announce] 20120522 RT 3.8.12 Released - Security Release", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000203.html"}, {"name": "49259", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/49259"}, {"name": "[rt-announce] 20120522 RT 4.0.6 Released - Security Release", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000204.html"}, {"name": "[rt-announce] 20120522 Security vulnerabilities in RT", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000202.html"}, {"name": "53660", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/53660"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-2082", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The vulnerable-passwords script in Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 does not update the password-hash algorithm for disabled user accounts, which makes it easier for context-dependent attackers to determine cleartext passwords, and possibly use these passwords after accounts are re-enabled, via a brute-force attack on the database. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-0009."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[rt-announce] 20120522 RT 3.8.12 Released - Security Release", "refsource": "MLIST", "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000203.html"}, {"name": "49259", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/49259"}, {"name": "[rt-announce] 20120522 RT 4.0.6 Released - Security Release", "refsource": "MLIST", "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000204.html"}, {"name": "[rt-announce] 20120522 Security vulnerabilities in RT", "refsource": "MLIST", "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000202.html"}, {"name": "53660", "refsource": "BID", "url": "http://www.securityfocus.com/bid/53660"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:46:01.129Z"}, "title": "CVE Program Container", "references": [{"name": "[rt-announce] 20120522 RT 3.8.12 Released - Security Release", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000203.html"}, {"name": "49259", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/49259"}, {"name": "[rt-announce] 20120522 RT 4.0.6 Released - Security Release", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000204.html"}, {"name": "[rt-announce] 20120522 Security vulnerabilities in RT", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000202.html"}, {"name": "53660", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/53660"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-2082", "datePublished": "2012-06-04T19:00:00", "dateReserved": "2011-05-13T00:00:00", "dateUpdated": "2024-08-06T22:46:01.129Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bestpractical:rt:3.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "F451959A-5305-4210-977B-6B396BC0A4F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "BA418CF5-49D6-4E0E-A1B5-8CB23752989D", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "8E238F87-8D8C-4E62-A8F0-3DB9EFDB8328", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "3FD8A7EF-5DB8-40C6-9124-A97A23B3EA02", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "2AD553B8-8495-47E5-A543-4DC963B3511A", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "28ADB191-4787-4FDB-B70A-F4C8BDF0F4B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "2772389A-9BCD-4B13-88C8-75BC64E40AF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "B1F9D05F-C86D-40D8-A7D9-5448918B72DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "311485DA-5381-4EAD-AF58-B8C67373413A", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "2EAF6671-8C77-448B-BF29-E2CF51176CC6", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "B55D762D-A723-435C-8D80-F7230F1648D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "4CC63EDC-541E-445D-8B72-799E4184B7EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.10:pre1:*:*:*:*:*:*", "matchCriteriaId": "0EF72E77-6239-4DAB-945C-4B13700E78E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.10:pre2:*:*:*:*:*:*", "matchCriteriaId": "8355F0C0-4DA0-41AC-8051-2C04D9999685", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.10:rc1:*:*:*:*:*:*", "matchCriteriaId": "3A5B2131-A083-4B8A-8B45-F8A8BEF06BF5", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "D5E6196E-4A90-4F64-BA99-A8E04A09D5ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.11:rc2:*:*:*:*:*:*", "matchCriteriaId": "E61CEFCD-49F2-465F-AB2C-97DC18D1543B", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.11:rc3:*:*:*:*:*:*", "matchCriteriaId": "FCA20CA1-D33C-4609-A281-ED5A4D92E2F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.11:rc4:*:*:*:*:*:*", "matchCriteriaId": "3EF32CB2-6057-4DFF-8E6A-72B1E2E01D6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "91D7CE86-3FCD-472E-BF01-31FFB36701BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "A295B774-B2C6-4AE0-882A-B66DF14C0074", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "A01B64B7-0FCB-4B5E-85E0-DA56F1435ECF", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "0343F2B3-AF01-426D-8C01-AFB5C9030E50", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "5CE952D4-9007-4FE0-A58D-B0A225458C09", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.6:*:*:*:*:*:*:*", "matchCriteriaId": "ECF07E00-0662-4A28-A5B8-AA1813545E45", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.7:*:*:*:*:*:*:*", "matchCriteriaId": "58E23D2E-3AF8-4D6B-BFE3-16E48BC85809", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.8:*:*:*:*:*:*:*", "matchCriteriaId": "0FE28027-A500-454E-85F8-A2C8D2E34EDB", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.10:*:*:*:*:*:*:*", "matchCriteriaId": "4FB2CF89-FB9B-4C8A-8590-6FC29CADD8B9", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.11:*:*:*:*:*:*:*", "matchCriteriaId": "69AA8284-4A34-4748-B8B3-9EE57FC58032", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.12:*:*:*:*:*:*:*", "matchCriteriaId": "5D488FC4-78E4-46D4-A752-89070583077D", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.13:*:*:*:*:*:*:*", "matchCriteriaId": "3EFB43D5-E6FF-47F9-8D6A-3B6B36417D85", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.14:*:*:*:*:*:*:*", "matchCriteriaId": "5D853DB7-318F-4EAD-BC10-D7C941AE8841", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.15:*:*:*:*:*:*:*", "matchCriteriaId": "AB92945C-3DE7-43C5-A871-DBCE5E82F945", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.16:*:*:*:*:*:*:*", "matchCriteriaId": "338B3ECA-954D-4909-96FC-B15B0E5A36D2", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.1.17:*:*:*:*:*:*:*", "matchCriteriaId": "78414EA2-BDC0-4E6F-976A-F6E1F88E79EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "70B3F0B2-8C70-4046-AAA0-FBD344FE4DBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "2D97508D-348E-46A3-8007-4D81084687D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "4A6BBFDC-91A3-4A17-B581-12CBBC4FE0F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "1126CD28-73D9-4F31-8E37-9D7804897A4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "24511FB5-0BCF-4407-9B96-CD78B54A9B24", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "FCD0173D-F699-4864-8856-D1792BDA0F84", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.1:rc1:*:*:*:*:*:*", "matchCriteriaId": "71CD2D3B-8E24-4FD3-9546-21DFAADA0440", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.1:rc2:*:*:*:*:*:*", "matchCriteriaId": "82652BAD-AC45-424C-8D8B-E82C18EFD7C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.1:rc3:*:*:*:*:*:*", "matchCriteriaId": "7CCA8BFD-E566-47AC-9183-08E0D22ACACB", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.1:rc4:*:*:*:*:*:*", "matchCriteriaId": "9A16EA9C-4414-4FEB-AF20-1502FB02BD8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "19CC2E53-5DE8-4A31-9B8A-79335DFBAFEF", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.2:rc1:*:*:*:*:*:*", "matchCriteriaId": "B0F029E8-5507-41D8-9703-379C331ACEC5", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "404AFC5C-20B4-41E5-ACDE-56626D68AFEA", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.3:rc1:*:*:*:*:*:*", "matchCriteriaId": "49F6A2BA-82DA-4AC9-8DD0-7FC14E1F08F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.2.3:rc2:*:*:*:*:*:*", "matchCriteriaId": "51E8FC92-0C19-4C64-BA9F-51B43500B2DE", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "F37D1380-965B-40E0-8A20-61FEA072B8D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "F873FABC-89D1-49C1-A6BC-ACEB230F4620", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "2B8BE811-5465-4153-B915-9F1BBE6E2133", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "D67F6099-D302-4823-A83F-9AD23F573F38", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "907B5E42-DB06-4834-B522-6B708E674122", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.0:rc5:*:*:*:*:*:*", "matchCriteriaId": "9EDAA418-2B5A-45C2-B767-D99037EB17F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.0:rc6:*:*:*:*:*:*", "matchCriteriaId": "A7D7BAD4-AC39-4856-B784-823DD15AF80B", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "E101B0FE-499F-44D8-8B68-BB7FEE40D2B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "747D8CD1-EE12-48A4-A795-88BC66A8DA33", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.2:rc1:*:*:*:*:*:*", "matchCriteriaId": "80EE7785-CCA3-4AC6-980D-8C4E3E1C5A43", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.2:rc2:*:*:*:*:*:*", "matchCriteriaId": "0CA65453-4879-4DA8-8600-2F8ECFED548F", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "5FDE201D-F31A-4738-B9AB-7BB11417990E", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.3:rc1:*:*:*:*:*:*", "matchCriteriaId": "C4B10D10-9494-4B9D-9A35-4D768A836ED9", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.3:rc2:*:*:*:*:*:*", "matchCriteriaId": "9B00B086-3318-4B5A-801D-7428DA9DB6C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "4D6ED4EC-F860-47BD-B699-551FB5DBF039", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.4:pre1:*:*:*:*:*:*", "matchCriteriaId": "75509078-F1EC-49A2-A644-5F8A6C02A24E", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.4:pre2:*:*:*:*:*:*", "matchCriteriaId": "7940D1FB-A283-43EF-AC9D-98DB7CCFEC2D", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.4:pre3:*:*:*:*:*:*", "matchCriteriaId": "805469B4-93CD-4007-9782-BEA976E6083A", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "E3398823-1813-4D7B-9EC9-74222A240051", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.5:pre1:*:*:*:*:*:*", "matchCriteriaId": "7A5A50E4-21C1-4F9B-BB82-3D18D91C9161", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.5:rc1:*:*:*:*:*:*", "matchCriteriaId": "0748D99F-D40E-4161-B561-DE0EA4A4375A", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.5:rc2:*:*:*:*:*:*", "matchCriteriaId": "BFCA4BA0-633F-42CF-9A38-3036C0F147ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.6:*:*:*:*:*:*:*", "matchCriteriaId": "F98B7895-BDB3-477C-8B34-88BD3E02EAFF", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.6:rc1:*:*:*:*:*:*", "matchCriteriaId": "16638B6B-32FC-42A5-A7A2-0C43FE22F801", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.6:rc2:*:*:*:*:*:*", "matchCriteriaId": "C195A011-5BAC-46B0-B57E-4B193D442601", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.4.7:rc1:*:*:*:*:*:*", "matchCriteriaId": "A6F8C186-8240-4F5E-8D1E-D705FB87A309", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "D5849DB3-69F8-428E-89D4-AAC932E6CF6B", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "E842B21F-5163-445F-8285-A4AFD42A5D78", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "5ED87C9D-5D46-48A1-B6C7-31F92C340C99", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.5.4:*:*:*:*:*:*:*", "matchCriteriaId": "B13961D0-754F-4EE9-A7B7-5D892AA9F1E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.5.5:*:*:*:*:*:*:*", "matchCriteriaId": "AAB2E1B1-F394-463C-AB6F-8D3741D57A8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.5.6:*:*:*:*:*:*:*", "matchCriteriaId": "194D87BE-AFD2-4775-8234-0CC8E41BFEAA", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.5.7:*:*:*:*:*:*:*", "matchCriteriaId": "19449938-2B92-44AC-89B2-21F142E65928", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "1512169D-DCEF-4964-B05A-3DF19CDE8F57", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.0:pre0:*:*:*:*:*:*", "matchCriteriaId": "EFD15E92-3DB1-41F0-8AF4-94120394B97D", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.0:pre1:*:*:*:*:*:*", "matchCriteriaId": "7E20EB81-E828-41AE-AC95-FEE91D0CA757", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "04B642C3-1295-4E8D-B104-4291361FA540", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "E5CDF725-3D97-43A4-9775-D4D4203C6B27", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "9A64C7A4-A76D-4855-B96B-CCC3479B0E61", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "B427F5D4-ACD6-46E5-B94F-CA30330C6492", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.1:pre2:*:*:*:*:*:*", "matchCriteriaId": "3A0CBD58-D037-4524-AE62-6961B096BB84", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.1:rc1:*:*:*:*:*:*", "matchCriteriaId": "99F684A7-A7DD-45C4-8FF6-66FDCFDBCBBB", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.1:rc2:*:*:*:*:*:*", "matchCriteriaId": "0C15AE0F-E78D-4211-B5D1-83185A65FD18", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "E9B38C33-D680-4285-A849-E6CDA9F4802F", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.2:rc1:*:*:*:*:*:*", "matchCriteriaId": "851C27A0-32C4-4F01-ACE8-9C71686704EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.2:rc3:*:*:*:*:*:*", "matchCriteriaId": "48532322-0172-4DDA-986F-2D5B0AB9833A", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.2:rc4:*:*:*:*:*:*", "matchCriteriaId": "29273C2E-8622-43F1-9222-5E037492DC46", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.2:rc5:*:*:*:*:*:*", "matchCriteriaId": "D0A3E995-8046-4B14-A22E-7ADDCBC3A43E", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "646CFD82-15FE-48E4-83C9-E3E037E9F928", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.3:rc1:*:*:*:*:*:*", "matchCriteriaId": "F51F5333-4645-41E6-850E-D3EFC5B16A46", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.3:rc2:*:*:*:*:*:*", "matchCriteriaId": "B9886244-AFAA-40B5-958C-8D9AF28F3001", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.3:rc3:*:*:*:*:*:*", "matchCriteriaId": "7E404ED1-94E0-4A2F-A9F7-F941FDB0782A", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.3:rc4:*:*:*:*:*:*", "matchCriteriaId": "A88BCABC-A39D-41BA-9DB8-DBB67483450A", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.4:*:*:*:*:*:*:*", "matchCriteriaId": "57404A14-6E1C-4F3B-8120-75F1073A3E18", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.4:rc1:*:*:*:*:*:*", "matchCriteriaId": "1EA8E78A-65E5-4A35-8CE5-589453DF4AC9", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.4:rc2:*:*:*:*:*:*", "matchCriteriaId": "3D8F5FD8-232E-4025-A6EF-BFE453D3AF7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.5:*:*:*:*:*:*:*", "matchCriteriaId": "3F40ED56-CDAC-40BB-A026-5D6A09DCB72C", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.5:rc1:*:*:*:*:*:*", "matchCriteriaId": "DE047F80-1FC1-460E-9C48-8515D8E34558", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.5:rc2:*:*:*:*:*:*", "matchCriteriaId": "82F5BB46-9B6E-44D0-9049-02EEF8411FA3", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.6:*:*:*:*:*:*:*", "matchCriteriaId": "33C325D9-CB88-430F-B1AE-3544C7176398", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.6:rc1:*:*:*:*:*:*", "matchCriteriaId": "46371C56-6120-414C-8F95-F5297753F6B5", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.6:rc2:*:*:*:*:*:*", "matchCriteriaId": "F45F2752-8B5B-489D-8BAC-654B79D55416", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.6:rc3:*:*:*:*:*:*", "matchCriteriaId": "C1DC976B-1AB0-4DC4-AF6C-697CE06B9E64", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.7:*:*:*:*:*:*:*", "matchCriteriaId": "F1E86D15-8435-46B9-88FF-8A51771C55E5", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.8:*:*:*:*:*:*:*", "matchCriteriaId": "543C8E63-9A49-4D6A-899A-7D244D0CCC17", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.9:*:*:*:*:*:*:*", "matchCriteriaId": "00AFB893-E37A-4E81-A984-66D677161D80", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.6.10:*:*:*:*:*:*:*", "matchCriteriaId": "312703C9-7145-4599-8B2C-6EF7BC060A07", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "E751061C-DFC1-4EB5-8FBB-20183C61E45F", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.7.5:*:*:*:*:*:*:*", "matchCriteriaId": "E439C79E-EDAB-42AE-850A-E81A6F321058", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.7.80:*:*:*:*:*:*:*", "matchCriteriaId": "137A7FA6-6007-4485-944B-89BB8BAC9BD8", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.7.85:*:*:*:*:*:*:*", "matchCriteriaId": "8AFEA933-CCDC-4F56-B80B-75480893049A", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.7.86:*:*:*:*:*:*:*", "matchCriteriaId": "54C5A322-524D-475F-9343-B63C2581348D", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "C503726A-4AAB-4444-A204-7F53A6369919", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "EA620414-F78C-49C2-AC29-7CCCCC15B4D7", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "A12FC95C-F9A7-4E47-AC07-F680D4436156", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "D6101EAE-CB0E-4AB2-BCDC-9B4354422940", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "F2B93F59-E22F-47E0-A5EA-D5716E9EAB48", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.1:rc1:*:*:*:*:*:*", "matchCriteriaId": "46059518-DCCB-410A-B7FD-FAF5F9DF9498", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.1:rc2:*:*:*:*:*:*", "matchCriteriaId": "CB1FAAF6-4403-4A45-B0D8-F9E4752C0CBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.1:rc3:*:*:*:*:*:*", "matchCriteriaId": "A6E90C9D-CCEF-47CE-BED1-16BF37927998", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.1:rc4:*:*:*:*:*:*", "matchCriteriaId": "13410E37-9A6A-4A33-BB97-6B4D96AA11FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.1:rc5:*:*:*:*:*:*", "matchCriteriaId": "02949074-A703-4F6E-BBA7-B79021A1377E", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "0BF01543-2929-4ADA-BD74-ABE00BF066BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.2:rc1:*:*:*:*:*:*", "matchCriteriaId": "9C440174-183B-423B-8E85-37E78EB43A91", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.2:rc2:*:*:*:*:*:*", "matchCriteriaId": "4CED5D54-C62B-4543-9C36-D76489EA3CED", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "562E9782-259B-42C6-BC3E-C452799A78FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.3:rc1:*:*:*:*:*:*", "matchCriteriaId": "0B9A9DF7-8700-4CD4-9DAA-5368066F17A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.3:rc2:*:*:*:*:*:*", "matchCriteriaId": "AC116B6E-F6A7-4885-B592-635EE06B6E05", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.4:*:*:*:*:*:*:*", "matchCriteriaId": "C4D2E2C8-15E8-45E4-9DBF-6CF2BEB30576", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.4:rc1:*:*:*:*:*:*", "matchCriteriaId": "9635AFA4-24E6-4893-8B4B-57FE811A758D", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.5:*:*:*:*:*:*:*", "matchCriteriaId": "9E4D117A-92C0-4884-A3E6-F6FCC8B89458", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.6:*:*:*:*:*:*:*", "matchCriteriaId": "AED14B5B-A9DE-46A4-8996-F6DC75B5DCD7", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.6:rc1:*:*:*:*:*:*", "matchCriteriaId": "D237F862-E8D5-4D82-9CDC-A8A84D2DE665", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.7:*:*:*:*:*:*:*", "matchCriteriaId": "84FB5217-7650-4BB2-A0AB-BAB6A362CFD4", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.7:rc1:*:*:*:*:*:*", "matchCriteriaId": "B306ECCE-8095-48E7-A523-05F6B2AF686E", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.8:*:*:*:*:*:*:*", "matchCriteriaId": "E4BF6295-E0EF-44B8-A694-348EF39371BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.8:rc2:*:*:*:*:*:*", "matchCriteriaId": "B6FBA787-90EE-4148-804C-F4F6021D5177", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.8:rc3:*:*:*:*:*:*", "matchCriteriaId": "9035493E-C9BA-4DDE-914A-E14CB072E745", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.8:rc4:*:*:*:*:*:*", "matchCriteriaId": "19E636D2-525B-4B27-A9E1-16BC0088C8AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.9:*:*:*:*:*:*:*", "matchCriteriaId": "546F1582-B85F-4D4F-840C-6257F1DE05E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.9:rc1:*:*:*:*:*:*", "matchCriteriaId": "F9040C7B-9080-4B57-885D-9275B9623E46", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.9:rc2:*:*:*:*:*:*", "matchCriteriaId": "7B927C5E-EAC2-4032-905A-BBCE66693958", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.9:rc3:*:*:*:*:*:*", "matchCriteriaId": "D8DB6F17-FF2F-4DCA-A8D1-C3E0D42ACCAB", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.10:*:*:*:*:*:*:*", "matchCriteriaId": "32BE1C0B-D379-4A51-8188-B660730539AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:3.8.11:*:*:*:*:*:*:*", "matchCriteriaId": "E2E768F1-80EA-4016-837E-9B92A3954F8B", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bestpractical:rt:3.8.12:*:*:*:*:*:*:*", "matchCriteriaId": "C35364B8-6BB7-439D-9450-08FB11639E76", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "F84987A7-103B-4473-9D4F-9F28880F6D9F", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "9E220C7C-D32C-4ED1-A056-074576B7B504", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "57A903C6-3C9F-47A0-92F7-D5272B2622AC", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "67EBD0AE-1A91-4690-8A07-0FB7342768FE", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "A1217A3C-2302-4E3B-BF35-4B16271A6FF6", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:rc5:*:*:*:*:*:*", "matchCriteriaId": "A72E5649-26E5-47DE-9CB4-019FEC8AF13E", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:rc6:*:*:*:*:*:*", "matchCriteriaId": "51E06E3C-4504-4325-BD89-9102315858C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:rc7:*:*:*:*:*:*", "matchCriteriaId": "8A1286FE-DB7C-48B1-82A9-A23C82984A21", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.0:rc8:*:*:*:*:*:*", "matchCriteriaId": "5C89298A-DA7A-4DDD-A420-5B5BC0ABAF7E", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "60F0CE6D-3DFA-4432-9615-78718C1D5583", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "A65F27F5-D134-4B94-BF93-CE32065B75B2", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "E1D6E744-5181-4E94-8B9B-3CA83648C7A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "5315BD2E-AE5F-49F9-8451-0D2D64CE56B1", "vulnerable": true}, {"criteria": "cpe:2.3:a:bestpractical:rt:4.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "087B001A-78B6-46EB-8623-D8C680243867", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The vulnerable-passwords script in Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 does not update the password-hash algorithm for disabled user accounts, which makes it easier for context-dependent attackers to determine cleartext passwords, and possibly use these passwords after accounts are re-enabled, via a brute-force attack on the database. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-0009."}, {"lang": "es", "value": "RT v3.x anterior a v3.8.12 y v4.x anteriores a v4.0.6 no actualiza el algoritmo \"password-hash\" para desactivar las cuentas de usuario, lo que facilita a atacantes dependiendo del contexto para determinar contrase\u00f1as en texto claro, y posiblemente usar esas contrase\u00f1as antes de que las cuentas est\u00e9n restablecidas, mediante un ataque de fuerza bruta sobre la base de datos. NOTE: Esta vulnerabilidad es debida a una soluci\u00f3n incompleta de CVE-2011-0009."}], "id": "CVE-2011-2082", "lastModified": "2012-09-29T03:09:07.533", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-06-04T19:55:01.540", "references": [{"source": "cve@mitre.org", "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000202.html"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000203.html"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://lists.bestpractical.com/pipermail/rt-announce/2012-May/000204.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/49259"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/53660"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-255"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}