Lucene search

[email protected]NVD:CVE-2004-2052

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2052

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.003

Percentile

66.0%

JSON

eSeSIX Thintune thin clients running firmware 2.4.38 and earlier accept any password that begins with the actual password, which makes it easier for users to conduct brute force password guessing.

Affected configurations

Nvd

Node

esesixthintuneRange≤2.4.38

VendorProductVersionCPE
esesixthintune*cpe:2.3:h:esesix:thintune:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
esesix	thintune	*	cpe:2.3:h:esesix:thintune::::::::

References

marc.info/?l=bugtraq&m=109068491801021&w=2

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.003

Percentile

66.0%

JSON

Related for NVD:CVE-2004-2052

cvelist1 cve1