Security Advisory

CVE-2004-2313

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-08-16 04:00:00

Last updated 2024-08-08 01:22:13

Assigner mitre

State PUBLISHED

Description

Inter7 SqWebMail 3.4.1 through 3.6.1 generates different error messages for incorrect passwords versus correct passwords on non-mail-enabled accounts (such as root), which allows remote attackers to guess the root password via brute force attacks.

← Browse all CVEs View on cve.org ↗