Описание
The Mediation server in IPdiva SSL VPN Server 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 stores the number of remaining allowed login attempts in a cookie, which makes it easier for remote attackers to conduct brute force attacks by manipulating this cookie's value.
The Mediation server in IPdiva SSL VPN Server 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 stores the number of remaining allowed login attempts in a cookie, which makes it easier for remote attackers to conduct brute force attacks by manipulating this cookie's value.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-0915
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060314.html
- http://secunia.com/advisories/28963
- http://securityreason.com/securityalert/3692
- http://www.securityfocus.com/archive/1/488133/100/100/threaded
- http://www.securityfocus.com/bid/27800
EPSS
CVE ID
Связанные уязвимости
The Mediation server in IPdiva SSL VPN Server 2.2 before 2.2.8.84 and 2.3 before 2.3.2.14 stores the number of remaining allowed login attempts in a cookie, which makes it easier for remote attackers to conduct brute force attacks by manipulating this cookie's value.
EPSS