Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4180


Vulnerability Score 5.0 5.0
CVE Id CVE-2008-4180
Last Modified 29 Jan 2009 01:55:43
Published 23 Sep 2008 11:25:42
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Unspecified vulnerability in db.php in NooMS 1.1 allows remote attackers to conduct brute force attacks against passwords via a username in the g_dbuser parameter and a password in the g_dbpwd parameter, and possibly a "localhost" g_dbhost parameter value, related to a "Mysql Remote Brute Force Vulnerability."

Vulnerable Systems


  • Nooms 1.1


XF - nooms-db-information-disclosure(45076)

BUGTRAQ - 20080911 Nooms 1.1

SREASON - 4289

Last Updated: 27 May 2016 10:48:24