CVE-2008-6549

Name of the Vulnerable Software and Affected Versions MoinMoin versions prior to 1.6.1

Description The issue is related to the password checker function in config/multiconfig.py, which uses the cracklib and python-crack features despite them not being thread-safe. This allows remote attackers to cause a denial of service, resulting in a segmentation fault and crash via unknown vectors.

Recommendations For versions prior to 1.6.1, update to version 1.6.1 or later to resolve the issue. As a temporary workaround, consider disabling the password checker function until a patch is available.