CVE-2010-5291 | Vulnerability Database | Aqua Security

Amberdms Billing System (ABS) before 1.4.1 does not properly implement blacklisting after detection of invalid login attempts, which makes it easier for remote attackers to obtain access via a brute-force approach.

Affected Software

Name	Vendor	Start Version	End Version
Amberdms_billing_system	Amberdms	*	1.4.0 (including)
Amberdms_billing_system	Amberdms	1.0.0 (including)	1.0.0 (including)
Amberdms_billing_system	Amberdms	1.1.0 (including)	1.1.0 (including)
Amberdms_billing_system	Amberdms	1.2.0 (including)	1.2.0 (including)
Amberdms_billing_system	Amberdms	1.3.0 (including)	1.3.0 (including)

References

https://projects.jethrocarr.com/p/oss-amberdms-bs/source/tree/f23f1121bd137bf798c8d3f01d35fa297a285331/help/docs/RELEASE_NOTES
https://raw.github.com/jethrocarr/amberdms-bs/master/help/docs/CHANGELOG
https://projects.jethrocarr.com/p/oss-amberdms-bs/source/tree/f23f1121bd137bf798c8d3f01d35fa297a285331/help/docs/RELEASE_NOTES
https://raw.github.com/jethrocarr/amberdms-bs/master/help/docs/CHANGELOG

NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-5291
CWE	https://cwe.mitre.org/data/definitions/264.html