|
|
CVE Reference: CVE-2007-0195 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-0195 |
|
|
Description: my.activation.php3 in F5 FirePass 5.4 through 5.5.1 and 6.0 displays different error messages for failed login attempts with a valid username than for those with an invalid username, which allows remote attackers to confirm the validity of an LDAP account. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA23627 OSVDB 32736 MISC http://www.mnin.org/advisories/2007_firepass.pdf FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2007-January/051651.html CONFIRM BID 21957 |
|
| Return to the previous page. |
