CVE Vulnerabilities

CVE-2002-0212

Published: May 16, 2002 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The login for Hosting Controller 1.1 through 1.4.1 returns different error messages when a valid or invalid user is provided, which allows remote attackers to determine the existence of valid usernames and makes it easier to conduct a brute force attack.

Affected Software

Name Vendor Start Version End Version
Hosting_controller Hosting_controller 1.1 1.1
Hosting_controller Hosting_controller 1.3 1.3
Hosting_controller Hosting_controller 1.4 1.4
Hosting_controller Hosting_controller 1.4.1 1.4.1
Hosting_controller Hosting_controller 1.4b 1.4b

References