3 matches found
CVE-2005-3480
login.asp in Ringtail CaseBook 6.1.0 displays different error messages depending on whether a user exists or not, which allows remote attackers to determine valid usernames...
CVE-2005-3480
login.asp in Ringtail CaseBook 6.1.0 displays different error messages depending on whether a user exists or not, which allows remote attackers to determine valid usernames...
CVE-2005-3480
CVE-2005-3480 affects Ringtail CaseBook 6.1.0 where login.asp returns distinct error messages for valid vs. invalid usernames, enabling remote attackers to enumerate valid usernames. The connected documents corroborate that the issue is an informational disclosure in authentication messages, with...