Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0343

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2003-0343
Last Modified 05 Sep 2008 04:34:05
Published 21 May 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0343

Summary

BlackMoon FTP Server 2.6 Free Edition, and possibly other distributions and versions, generates an "Account does not exist" error message when an invalid username is entered, which makes it easier for remote attackers to conduct brute force attacks.

Vulnerable Systems

Application

  • Selom Ofori Blackmoon Ftp Server 2.6


References

BUGTRAQ - 20030520 [[ TH 026 Inc. ]] SA #4 - Blackmoon FTP Server cleartext passwords and User enumeration


Last Updated: 27 May 2016 10:37:52