NVD

Id
52426  
Name
CVE-2007-0195  
Description
my.activation.php3 in F5 FirePass 5.4 through 5.5.1 and 6.0 displays different error messages for failed login attempts with a valid username than for those with an invalid username, which allows remote attackers to confirm the validity of an LDAP account.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2007-01-12  
Modified Date
2008-09-05  
Seq
2007-0195  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
264819 52426 CVE-2007-0195 20070106 NNL-Labs & MNIN - F5 FirePass Security Advisory  View
264820 52426 CVE-2007-0195 http://www.mnin.org/advisories/2007_firepass.pdf  View
264821 52426 CVE-2007-0195 21957  View
264822 52426 CVE-2007-0195 https://tech.f5.com/home/solutions/sol6923.html  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
52682 JVNDB-2007-001374 F5 FirePass の my.activation.php3 における LDAP アカウント名の有効性を確認される脆弱性 F5 FirePass の my.activation.php3 は、有効なユーザ名がログイン失敗した場合と無効なユーザ名でログイン失敗した場合で異なるエラーメッセージを表示するため、LDAP アカウント名の有効性を確認される脆弱性が存在します。 CVE-2007-0195 23550 CVE-2007-0195 52426 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001374.html 2007-01-12 2012-06-26 View