Candidate: CVE-2009-4300
PublicDate: 2009-12-16 01:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4300
Description:
 Multiple unspecified authentication plugins in Moodle 1.8 before 1.8.11 and
 1.9 before 1.9.7 store the MD5 hashes for passwords in the user table, even
 when the cached hashes are not used by the plugin, which might make it
 easier for attackers to obtain credentials via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_moodle:
upstream_moodle: needs-triage
dapper_moodle: ignored (reached end-of-life)
hardy_moodle: ignored (reached end-of-life)
intrepid_moodle: needed (reached end-of-life)
jaunty_moodle: ignored (reached end-of-life)
karmic_moodle: ignored (reached end-of-life)
lucid_moodle: ignored (reached end-of-life)
maverick_moodle: ignored (reached end-of-life)
natty_moodle: not-affected (1.9.9.dfsg2-2)
oneiric_moodle: not-affected (1.9.9.dfsg2-3)
precise_moodle: not-affected (1.9.9.dfsg2-6)
quantal_moodle: not-affected (1.9.9.dfsg2-6)
raring_moodle: not-affected (1.9.9.dfsg2-6)
saucy_moodle: not-affected (1.9.9.dfsg2-6)
devel_moodle: not-affected (1.9.9.dfsg2-6)