CVE-2003-1096

Опубликовано: 31 дек. 2003

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote attackers to gain privileges via brute force password guessing attacks.

Ссылки

http://marc.info/?l=bugtraq&m=108135227731965&w=2
http://www.cisco.com/warp/public/707/cisco-sn-20030802-leap.shtml
Vendor Advisory
http://www.kb.cert.org/vuls/id/473108
Third Party Advisory
US Government Resource
http://www.osvdb.org/15209
http://www.securityfocus.com/archive/1/340119
http://www.securityfocus.com/archive/1/340365
http://www.securityfocus.com/bid/8755
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/12804
http://marc.info/?l=bugtraq&m=108135227731965&w=2
http://www.cisco.com/warp/public/707/cisco-sn-20030802-leap.shtml
Vendor Advisory
http://www.kb.cert.org/vuls/id/473108
Third Party Advisory
US Government Resource
http://www.osvdb.org/15209
http://www.securityfocus.com/archive/1/340119
http://www.securityfocus.com/archive/1/340365
http://www.securityfocus.com/bid/8755
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/12804

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:leap:*:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.54486

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-mh23-hrq9-26hw

github

почти 4 года назад