CVE-2004-0243

Sažetak

AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.

Reference

http://archives.neohapsis.com/archives/bugtraq/2004-02/0313.html
http://marc.info/?l=bugtraq&m=107583269206044&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/15172

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

14-02-2024 - 14:30

Objavljeno

23-11-2004 - 05:00