An issue was discovered in BTITeam XBTIT 2.5.4. When a user logs in, their password hash is rehashed using a predictable salt and stored in the "pass" cookie, which is not flagged as HTTPOnly. Due to the weak and predictable salt that is in place, an attacker who successfully steals this cookie can efficiently brute-force it to retrieve the user's cleartext password.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-09-05T21:00:00

Updated: 2024-08-05T10:01:54.118Z

Reserved: 2018-08-21T00:00:00

Link: CVE-2018-15681

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-09-05T21:29:01.670

Modified: 2024-11-21T03:51:15.933

Link: CVE-2018-15681

cve-icon Redhat

No data.