PT-2005-3941 · Macromedia · Macromedia Breeze

Published

2005-09-30

Updated

2008-09-05

CVE-2005-3112

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Macromedia Breeze version 5.0

Description The issue concerns the storage of passwords in the database. Instead of storing hashed passwords, the "reset password" feature stores passwords in plaintext. This allows attackers with access to the database to obtain the passwords.

Recommendations For Macromedia Breeze version 5.0, consider modifying the "reset password" feature to store passwords securely using a hashing mechanism instead of plaintext. As a temporary workaround, restrict access to the database to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3112

Affected Products

Macromedia Breeze

PT-2005-3941 · Macromedia · Macromedia Breeze

CVE-2005-3112

Related Identifiers

Affected Products

References · 5