Lucene search

K

MitreCVELIST:CVE-2007-0195

HistoryJan 11, 2007 - 2:00 a.m.

CVE-2007-0195

2007-01-1102:00:00

mitre

www.cve.org

1

6.6 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.9%

my.activation.php3 in F5 FirePass 5.4 through 5.5.1 and 6.0 displays different error messages for failed login attempts with a valid username than for those with an invalid username, which allows remote attackers to confirm the validity of an LDAP account.

References

lists.grok.org.uk/pipermail/full-disclosure/2007-January/051651.html

secunia.com/advisories/23627

www.mnin.org/advisories/2007_firepass.pdf

www.osvdb.org/32736

www.securityfocus.com/bid/21957

tech.f5.com/home/solutions/sol6923.html

6.6 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.9%

Related for CVELIST:CVE-2007-0195

cve1 nvd1 prion1 openvas1 securityvulns1