Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1363

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2003-1363
Last Modified 05 Sep 2008 04:36:44
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1363

Summary

The remote web management interface of Aprelium Technologies Abyss Web Server 1.1.2 and earlier does not log connection attempts to the web management port (9999), which allows remote attackers to mount brute force attacks on the administration console without detection.

Vulnerable Systems

Application

  • Aprelium Technologies Abyss Web Server 1.1.2


References

BID - 6842

XF - abyss-web-admin-bruteforce(11310)

BUGTRAQ - 20030212 Abyss WebServer Brute Force Vulnerability


Last Updated: 27 May 2016 10:38:20