13 matches found
CVE-2001-1528
AmTote International homebet program returns different error messages when invalid account numbers and PIN codes are provided, which allows remote attackers to determine the existence of valid account numbers via a brute force attack...
EUVD-2001-1151
Malware in sbrugna...
AmTote Homebet 0 World Accessible Log Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3370/info AmTote Homebet is an Internet-based account wagering interface. Homebet stores all account and corresponding PIN numbers in the homebet.log file stored in the Homebet virtual directory. On a default installation...
Amtote Homebet 0 Account Information Brute Force Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3371/info Homebet is an internet based betting application that is developed by Amtote International. A vulnerability exists in Homebet which could enable a non-registered user to confirm the validity of possible legitima...
CVE-2001-1528
The CVE-2001-1528 entry concerns AmTote International homebet software. It describes a vulnerability where the authentication process reveals different error messages for invalid account numbers and PINs, enabling remote attackers to brute-force and determine the existence of valid accounts. Affe...
CVE-2001-1528
AmTote International homebet program returns different error messages when invalid account numbers and PIN codes are provided, which allows remote attackers to determine the existence of valid account numbers via a brute force attack...
CVE-2001-1170
The CVE concerns AmTote International’s homebet program. The vulnerability arises because homebet.log is stored in the homebet/ virtual directory, enabling remote attackers to access sensitive data and potentially disclose account and PIN numbers. The description does not specify affected version...
CVE-2001-1170
AmTote International homebet program stores the homebet.log file in the homebet/ virtual directory, which allows remote attackers to steal account and PIN numbers...
CVE-2001-1528
AmTote International homebet program returns different error messages when invalid account numbers and PIN codes are provided, which allows remote attackers to determine the existence of valid account numbers via a brute force attack...
CVE-2001-1170
AmTote International homebet program stores the homebet.log file in the homebet/ virtual directory, which allows remote attackers to steal account and PIN numbers...
Amtote Homebet - Account Information Brute Force
Amtote Homebet - Account Information Brute Force source: https://www.securityfocus.com/bid/3371/info Homebet is an internet based betting application that is developed by Amtote International. A vulnerability exists in Homebet which could enable a non-registered user to confirm the validity of...
AmTote Homebet - World Accessible Log
source: https://www.securityfocus.com/bid/3370/info AmTote Homebet is an Internet-based account wagering interface. Homebet stores all account and corresponding PIN numbers in the homebet.log file stored in the Homebet virtual directory. On a default installation, the homebet.log file is world...
Amtote Homebet - Account Information Brute Force
source: https://www.securityfocus.com/bid/3371/info Homebet is an internet based betting application that is developed by Amtote International. A vulnerability exists in Homebet which could enable a non-registered user to confirm the validity of possible legitimate users and their PIN numbers...