Описание
One-Time Passwords In Everything (a.k.a OPIE) 2.32 and 2.4 allows remote attackers to determine the existence of user accounts by printing random passphrases if the user account does not exist and static passphrases if the user account does exist.
Ссылки
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:nrl.navy:one-time_passwords_in_everything:2.4:*:*:*:*:*:*:*
cpe:2.3:a:nrl.navy:one-time_passwords_in_everything:2.32:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01471
Низкий
5 Medium
CVSS2
Дефекты
CWE-203
Связанные уязвимости
debian
больше 23 лет назад
One-Time Passwords In Everything (a.k.a OPIE) 2.32 and 2.4 allows remo ...
github
больше 3 лет назад
One-Time Passwords In Everything (a.k.a OPIE) 2.32 and 2.4 allows remote attackers to determine the existence of user accounts by printing random passphrases if the user account does not exist and static passphrases if the user account does exist.
EPSS
Процентиль: 80%
0.01471
Низкий
5 Medium
CVSS2
Дефекты
CWE-203