subject:"Bug#500115\: CVE\-2008\-4106\: WordPress allows remote attackers to change an arbitrary user's password to a random value"

Bug#500115: CVE-2008-4106: WordPress allows remote attackers to change an arbitrary user's password to a random value

2008-09-25 Thread Andrea De Iacovo

> Package: wordpress > Version: 2.0.10-1 > Severity: grave > Tags: security > > Hi, > the following CVE (Common Vulnerabilities & Exposures) id was > published for wordpress. > > CVE-2008-4106[0]: > | WordPress before 2.6.2 does not properly handle MySQL warnings about > | insertion of username s

Bug#500115: CVE-2008-4106: WordPress allows remote attackers to change an arbitrary user's password to a random value

2008-09-25 Thread Stefan Fritsch

Package: wordpress Version: 2.0.10-1 Severity: grave Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for wordpress. CVE-2008-4106[0]: | WordPress before 2.6.2 does not properly handle MySQL warnings about | insertion of username strings that exceed the m