Lucene search
+L

poker-multiple-useremu.txt

🗓️ 12 Sep 2008 00:00:00Reported by Jeremy BrownType 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 16 Views

Vulnerability in online poker software allows remote username enumeration, enabling brute force attacks on user accounts

Code
`=======================================================================  
  
Products: Absolute Poker, PokerStars  
  
URLs: http://www.absolutepoker.com  
http://www.pokerstars.com  
  
  
Vulnerability: Remote Username Enumeration  
  
Affected: All Vendors Listed  
  
=======================================================================  
  
  
Details:  
  
Multiple Online Poker Softwares have a user enumeration vulnerability  
in their authentication systems. Attackers could take advantage of this  
flaw to brute force accounts for these online poker vendors. Here is  
the login data for those affected:  
  
[Absolute Poker]  
  
RIGHT username, WRONG password:  
  
"Incorrect password has been entered. Please make sure the password is correct."  
  
WRONG username, WRONG password:  
  
"Login ID is not recognized. Please make sure the ID is correct."  
  
..........  
  
[PokerStars]  
  
RIGHT username, WRONG password:  
  
"The password you entered is incorrect. Please try again"  
  
WRONG username, WRONG password:  
  
"The UserID (nickname) you entered is incorrect. Please try again"  
  
========================================================================  
  
Jeremy Brown [[email protected]/jbrownsec.blogspot.com]`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

12 Sep 2008 00:00Current
7.4High risk
Vulners AI Score7.4
16