Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5404

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5404
Last Modified 05 Sep 2008 05:30:41
Published 09 Jan 2008 04:46:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5404

Summary

Layton HelpBox 3.7.1 generates different responses depending on whether or not a username is valid in a failed login attempt, which allows remote attackers to enumerate valid usernames.

Vulnerable Systems

Application

  • Layton Technology Helpbox 3.7.1


References

BID - 27187

MISC - http://secunia.com/secunia_research/2007-94/advisory/

SECUNIA - 27699

XF - helpbox-error-information-disclosure(39544)


Last Updated: 27 May 2016 10:46:10