AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.
References
| Link | Resource |
|---|---|
| http://archives.neohapsis.com/archives/bugtraq/2004-02/0313.html | Broken Link |
| http://marc.info/?l=bugtraq&m=107583269206044&w=2 | Broken Link |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/15172 | VDB Entry Vendor Advisory |
| http://archives.neohapsis.com/archives/bugtraq/2004-02/0313.html | Broken Link |
| http://marc.info/?l=bugtraq&m=107583269206044&w=2 | Broken Link |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/15172 | VDB Entry Vendor Advisory |
Configurations
History
20 Nov 2024, 23:48
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://archives.neohapsis.com/archives/bugtraq/2004-02/0313.html - Broken Link | |
| References | () http://marc.info/?l=bugtraq&m=107583269206044&w=2 - Broken Link | |
| References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/15172 - VDB Entry, Vendor Advisory |
14 Feb 2024, 14:30
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-203 | |
| References | () http://archives.neohapsis.com/archives/bugtraq/2004-02/0313.html - Broken Link | |
| References | () http://marc.info/?l=bugtraq&m=107583269206044&w=2 - Broken Link | |
| References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/15172 - VDB Entry, Vendor Advisory |
Information
Published : 2004-11-23 05:00
Updated : 2024-11-20 23:48
NVD link : CVE-2004-0243
Mitre link : CVE-2004-0243
CVE.ORG link : CVE-2004-0243
JSON object : View
Products Affected
ibm
- aix
CWE
CWE-203
Observable Discrepancy