Vulnerability CVE-2005-0798


Published: 2005-03-15   Modified: 2012-02-12

Description:
Novell iChain Mini FTP Server 2.3, and possibly earlier versions, does not limit the number of incorrect logins, which makes it easier for remote attackers to conduct brute force login attacks.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Novell -> Ichain 

 References:
http://www.infobyte.com.ar/adv/ISR-05.html
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10096887.htm
http://secunia.com/advisories/14607
http://marc.theaimsgroup.com/?l=bugtraq&m=111091517007681&w=2
http://www.osvdb.org/14648
http://securitytracker.com/id?1013408

Copyright 2024, cxsecurity.com

 

Back to Top