Lucene search
poker-multiple-useremu.txt
Vulnerability in online poker software allows remote username enumeration, enabling brute force attacks on user accounts
Show more
`=======================================================================
Products: Absolute Poker, PokerStars
URLs: http://www.absolutepoker.com
http://www.pokerstars.com
Vulnerability: Remote Username Enumeration
Affected: All Vendors Listed
=======================================================================
Details:
Multiple Online Poker Softwares have a user enumeration vulnerability
in their authentication systems. Attackers could take advantage of this
flaw to brute force accounts for these online poker vendors. Here is
the login data for those affected:
[Absolute Poker]
RIGHT username, WRONG password:
"Incorrect password has been entered. Please make sure the password is correct."
WRONG username, WRONG password:
"Login ID is not recognized. Please make sure the ID is correct."
..........
[PokerStars]
RIGHT username, WRONG password:
"The password you entered is incorrect. Please try again"
WRONG username, WRONG password:
"The UserID (nickname) you entered is incorrect. Please try again"
========================================================================
Jeremy Brown [[email protected]/jbrownsec.blogspot.com]`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo12 Sep 2008 00:00Current
7.4High risk
Vulners AI Score7.4