Описание
BMC Remedy Action Request System 5.01.02 Patch 1267 generates different error messages for failed login attempts with a valid username than for those with an invalid username, which allows remote attackers to determine valid account names.
BMC Remedy Action Request System 5.01.02 Patch 1267 generates different error messages for failed login attempts with a valid username than for those with an invalid username, which allows remote attackers to determine valid account names.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-0310
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31527
- http://osvdb.org/31658
- http://secunia.com/advisories/23775
- http://securityreason.com/securityalert/2162
- http://securitytracker.com/id?1017515
- http://www.alighieri.org/advisories/advisory-remedy50102.txt
- http://www.securityfocus.com/archive/1/456949/100/0/threaded
- http://www.securityfocus.com/archive/1/457078/100/0/threaded
- http://www.securityfocus.com/bid/22066
- http://www.vupen.com/english/advisories/2007/0204
EPSS
Процентиль: 76%
0.0097
Низкий
CVE ID
Связанные уязвимости
nvd
почти 19 лет назад
BMC Remedy Action Request System 5.01.02 Patch 1267 generates different error messages for failed login attempts with a valid username than for those with an invalid username, which allows remote attackers to determine valid account names.
EPSS
Процентиль: 76%
0.0097
Низкий