Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0243

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0243
Last Modified 05 Sep 2008 04:37:54
Published 23 Nov 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0243

Summary

AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.

Vulnerable Systems

Operating System

  • Ibm Aix


References

XF - aix-password-enumeration(15172)

BUGTRAQ - 20040203 Re: sqwebmail web login

BUGTRAQ - 20040206 AIX password enumeration possible


Last Updated: 27 May 2016 10:38:32