CVE-2013-4178 Information

Description

The Google Authenticator login module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.4 for Drupal allows remote attackers to obtain access by replaying the username password and one-time password (OTP).

Reference

http://www.securityfocus.com/bid/59884 https://drupal.org/node/1995482 https://drupal.org/node/1995634 https://drupal.org/node/1995706