2 matches found
CVE-2007-4422
CVE-2007-4422 affects Symantec Enterprise Firewall 6.x: the login interface used with a VPN using pre-shared key (PSK) authentication leaks information by returning different responses for valid vs invalid usernames, enabling remote username enumeration. The available connected documents confirm ...
CVE-2007-4422
The login interface in Symantec Enterprise Firewall 6.x, when a VPN with pre-shared key PSK authentication is enabled, generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid usernames...