The %{password(...)} macro in pastemacroexpander.cpp in the KDE Paste Applet prior to 4.10.5 in kdeplasma-addons does not properly generate passwords, which allows context-dependent malicious users to bypass authentication via a brute-force attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kde paste applet |