The installation routine in ownCloud Server prior to 4.0.14, 4.5.x prior to 4.5.9, and 5.0.x prior to 5.0.4 uses the time function to seed the generation of the PostgreSQL database user password, which makes it easier for remote malicious users to guess the password via a brute force attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
owncloud owncloud 4.0.11 |
||
owncloud owncloud |
||
owncloud owncloud 4.0.6 |
||
owncloud owncloud 4.0.8 |
||
owncloud owncloud 4.0.2 |
||
owncloud owncloud 4.0.3 |
||
owncloud owncloud 4.0.4 |
||
owncloud owncloud 4.0.5 |
||
owncloud owncloud 4.0.0 |
||
owncloud owncloud 4.0.1 |
||
owncloud owncloud 4.0.10 |
||
owncloud owncloud 4.0.12 |
||
owncloud owncloud 4.0.7 |
||
owncloud owncloud 4.0.9 |
||
owncloud owncloud 4.5.4 |
||
owncloud owncloud 4.5.6 |
||
owncloud owncloud 4.5.8 |
||
owncloud owncloud 4.5.0 |
||
owncloud owncloud 4.5.1 |
||
owncloud owncloud 4.5.2 |
||
owncloud owncloud 4.5.3 |
||
owncloud owncloud 4.5.5 |
||
owncloud owncloud 4.5.7 |
||
owncloud owncloud 5.0.3 |
||
owncloud owncloud 5.0.0 |
||
owncloud owncloud 5.0.1 |
||
owncloud owncloud 5.0.2 |