Lucene search

[email protected]CVE-2000-0937

HistoryDec 19, 2000 - 5:00 a.m.

CVE-2000-0937

2000-12-1905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

samba

swat

brute force

password guessing

nvd

cve-2000-0937

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.026 Low

EPSS

Percentile

90.2%

JSON

Samba Web Administration Tool (SWAT) in Samba 2.0.7 does not log login attempts in which the username is correct but the password is wrong, which allows remote attackers to conduct brute force password guessing attacks.

CPENameOperatorVersion
samba:sambasambaeq2.0.7

CPE	Name	Operator	Version
samba:samba	samba	eq	2.0.7

References

archives.neohapsis.com/archives/bugtraq/2000-10/0430.html

www.securityfocus.com/bid/1873

exchange.xforce.ibmcloud.com/vulnerabilities/5442

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.026 Low

EPSS

Percentile

90.2%

JSON

Related for CVE-2000-0937

openvas1