CVE-2012-0794 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2012-0794

Modified

More Info Official Page

Source-secalert@redhat.com

Published At-17 Jul, 2012 | 10:20

Updated At-29 Apr, 2026 | 01:13

The rc4encrypt function in lib/moodlelib.php in Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 uses a hardcoded password of nfgjeingjk, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by reading this script's source code within the open-source software distribution.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N

Type: Primary

Version: 2.0

Base score: 5.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:N/C:P/I:N/A:N

CPE Matches

>>moodle>>1.9.1

cpe:2.3:a:moodle:moodle:1.9.1:*:*:*:*:*:*:*

>>moodle>>1.9.2

cpe:2.3:a:moodle:moodle:1.9.2:*:*:*:*:*:*:*

>>moodle>>1.9.3

cpe:2.3:a:moodle:moodle:1.9.3:*:*:*:*:*:*:*

>>moodle>>1.9.4

cpe:2.3:a:moodle:moodle:1.9.4:*:*:*:*:*:*:*

>>moodle>>1.9.5

cpe:2.3:a:moodle:moodle:1.9.5:*:*:*:*:*:*:*

>>moodle>>1.9.6

cpe:2.3:a:moodle:moodle:1.9.6:*:*:*:*:*:*:*

>>moodle>>1.9.7

cpe:2.3:a:moodle:moodle:1.9.7:*:*:*:*:*:*:*

>>moodle>>1.9.8

cpe:2.3:a:moodle:moodle:1.9.8:*:*:*:*:*:*:*

>>moodle>>1.9.9

cpe:2.3:a:moodle:moodle:1.9.9:*:*:*:*:*:*:*

>>moodle>>1.9.10

cpe:2.3:a:moodle:moodle:1.9.10:*:*:*:*:*:*:*

>>moodle>>1.9.11

cpe:2.3:a:moodle:moodle:1.9.11:*:*:*:*:*:*:*

>>moodle>>1.9.12

cpe:2.3:a:moodle:moodle:1.9.12:*:*:*:*:*:*:*

>>moodle>>1.9.13

cpe:2.3:a:moodle:moodle:1.9.13:*:*:*:*:*:*:*

>>moodle>>1.9.14

cpe:2.3:a:moodle:moodle:1.9.14:*:*:*:*:*:*:*

>>moodle>>1.9.15

cpe:2.3:a:moodle:moodle:1.9.15:*:*:*:*:*:*:*

>>moodle>>2.0.0

cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*

>>moodle>>2.0.1

cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*

>>moodle>>2.0.2

cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*

>>moodle>>2.0.3

cpe:2.3:a:moodle:moodle:2.0.3:*:*:*:*:*:*:*

>>moodle>>2.0.4

cpe:2.3:a:moodle:moodle:2.0.4:*:*:*:*:*:*:*

>>moodle>>2.0.5

cpe:2.3:a:moodle:moodle:2.0.5:*:*:*:*:*:*:*

>>moodle>>2.0.6

cpe:2.3:a:moodle:moodle:2.0.6:*:*:*:*:*:*:*

>>moodle>>2.1.0

cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*

>>moodle>>2.1.1

cpe:2.3:a:moodle:moodle:2.1.1:*:*:*:*:*:*:*

>>moodle>>2.1.2

cpe:2.3:a:moodle:moodle:2.1.2:*:*:*:*:*:*:*

>>moodle>>2.1.3

cpe:2.3:a:moodle:moodle:2.1.3:*:*:*:*:*:*:*

>>moodle>>2.2.0

cpe:2.3:a:moodle:moodle:2.2.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-255	Primary	nvd@nist.gov

CWE ID: CWE-255

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=98456628a24bba25d336860d38a45b5a4e3895da	secalert@redhat.com	N/A
http://moodle.org/mod/forum/discuss.php?d=194013	secalert@redhat.com	Vendor Advisory
http://www.debian.org/security/2012/dsa-2421	secalert@redhat.com	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=783532	secalert@redhat.com	N/A
http://git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=98456628a24bba25d336860d38a45b5a4e3895da	af854a3a-2127-422b-91ae-364da2661108	N/A
http://moodle.org/mod/forum/discuss.php?d=194013	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://www.debian.org/security/2012/dsa-2421	af854a3a-2127-422b-91ae-364da2661108	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=783532	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=98456628a24bba25d336860d38a45b5a4e3895da

Source: secalert@redhat.com

Resource: N/A

Hyperlink: http://moodle.org/mod/forum/discuss.php?d=194013

Source: secalert@redhat.com

Resource:

Vendor Advisory

Hyperlink: http://www.debian.org/security/2012/dsa-2421

Source: secalert@redhat.com

Resource: N/A

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=783532

Source: secalert@redhat.com

Resource: N/A

Hyperlink: http://git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=98456628a24bba25d336860d38a45b5a4e3895da

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://moodle.org/mod/forum/discuss.php?d=194013

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Vendor Advisory

Hyperlink: http://www.debian.org/security/2012/dsa-2421

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=783532

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A