Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0453

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0453
Last Modified 05 Sep 2008 04:28:04
Published 12 Aug 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0453

Summary

The account lockout capability in Oblix NetPoint 5.2 and earlier only locks out users once for the specified lockout period, which makes it easier for remote attackers to conduct brute force password guessing by waiting until the lockout period ends, then guessing passwords without being locked out again.

Vulnerable Systems

Application

  • Oblix Netpoint 5.2


References

BID - 4288

XF - netpoint-account-lockout-bypass(8461)

BUGTRAQ - 20020314 Account Lockout Vulnerability in Oblix NetPoint v5.2


Last Updated: 27 May 2016 10:36:54