{"id":"CVE-2009-4810","details":"The Secure Remote Password (SRP) implementation in Samhain before 2.5.4 does not check for a certain zero value where required by the protocol, which allows remote attackers to bypass authentication via crafted input.","modified":"2026-01-27T04:10:05.957849Z","published":"2010-04-23T14:30:01Z","withdrawn":"2026-01-27T04:10:05.957849Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/34104"},{"type":"FIX","url":"http://trac.la-samhna.de/samhain/changeset/225"},{"type":"FIX","url":"http://trac.la-samhna.de/samhain/ticket/150"},{"type":"WEB","url":"http://www.securityfocus.com/bid/34003"}],"schema_version":"1.7.3"}