PublicDate: 2007-11-19 21:46:00 UTC
Candidate: CVE-2007-6013
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6013
Description:
 Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a
 password MD5 hash, which allows attackers to bypass authentication by
 obtaining the MD5 hash from the user database, then generating the
 authentication cookie from that hash.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/wordpress/+bug/172440
 http://core.trac.wordpress.org/ticket/5367
Priority: low
Discovered-by:
Assigned-to:
CVSS: 
upstream_wordpress: released (2.5.0)
dapper_wordpress: ignored (reached end-of-life)
edgy_wordpress: needs-triage (reached end-of-life)
feisty_wordpress: needs-triage (reached end-of-life)
gutsy_wordpress: needs-triage (reached end-of-life)
hardy_wordpress: ignored (reached end-of-life)
intrepid_wordpress: not-affected
jaunty_wordpress: not-affected
karmic_wordpress: not-affected
lucid_wordpress: not-affected
maverick_wordpress: not-affected
natty_wordpress: not-affected
oneiric_wordpress: not-affected
devel_wordpress: not-affected