exploitDog

CVE-2003-0637

Опубликовано: 27 авг. 2003

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Novell iChain 2.2 before Support Pack 1 uses a shorter timeout for a non-existent user than a valid user, which makes it easier for remote attackers to guess usernames and conduct brute force password guessing.

Ссылки

http://support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm
Broken Link
Patch
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm
Broken Link
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:novell:ichain:2.2:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00946

Низкий

5 Medium

CVSS2

Дефекты

CWE-203

Связанные уязвимости

GHSA-fv5q-cm23-v6v8

github

почти 4 года назад

Novell iChain 2.2 before Support Pack 1 uses a shorter timeout for a non-existent user than a valid user, which makes it easier for remote attackers to guess usernames and conduct brute force password guessing.

EPSS

Процентиль: 76%

0.00946

Низкий

5 Medium

CVSS2

Дефекты

CWE-203