CVE

Id
7920  
CVE No.
CVE-2003-1096  
Status
Candidate  
Description
The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote attackers to gain privileges via brute force password guessing attacks.  
Phase
Assigned (20050311)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
47550 7920 CVE-2003-1096 CISCO:20030803 Dictionary Attack on Cisco LEAP Vulnerability  View
47551 7920 CVE-2003-1096 URL:http://www.cisco.com/warp/public/707/cisco-sn-20030802-leap.shtml  View
47552 7920 CVE-2003-1096 BUGTRAQ:20031006 Weaknesses in LEAP Challenge/Response  View
47553 7920 CVE-2003-1096 URL:http://www.securityfocus.com/archive/1/340365  View
47554 7920 CVE-2003-1096 BUGTRAQ:20031003 Dictionary attack against Cisco"s LEAP, Wireless LANs vulnerable  View
47555 7920 CVE-2003-1096 URL:http://www.securityfocus.com/archive/1/340119  View
47556 7920 CVE-2003-1096 BUGTRAQ:20040407 Release of Cisco Attack tool Asleap  View
47557 7920 CVE-2003-1096 URL:http://marc.info/?l=bugtraq&m=108135227731965&w=2  View
47558 7920 CVE-2003-1096 CERT-VN:VU#473108  View
47559 7920 CVE-2003-1096 URL:http://www.kb.cert.org/vuls/id/473108  View
47560 7920 CVE-2003-1096 BID:8755  View
47561 7920 CVE-2003-1096 URL:http://www.securityfocus.com/bid/8755  View
47562 7920 CVE-2003-1096 OSVDB:15209  View
47563 7920 CVE-2003-1096 URL:http://www.osvdb.org/15209  View
47564 7920 CVE-2003-1096 XF:cisco-leap-dictionary(12804)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
63408 JVNDB-2003-000134 HP-UX の rexec コマンドにおけるバッファオーバーフローの脆弱性 HP-UX に含まれている rexec コマンドには、"-l" オプションの引数に対するチェックが不適切であるため、異常に長いユーザ名を指定することにより、バッファオーバーフローが発生する脆弱性が存在します。 CVE-2003-1097 7920 7.2 http://jvndb.jvn.jp/ja/contents/2003/JVNDB-2003-000134.html  View