Instant Virtual Extranet CVE-2004-0939 Denial-Of-Service Vulnerability

Instant Virtual Extranet is prone to a denial-of-service vulnerability. changepassword.cgi in Neoteris Instant Virtual Extranet (IVE) 3.x and 4.x, with LDAP authentication or NT domain authentication enabled, does not limit the number of times a bad password can be entered, which allows remote attackers to guess passwords via a brute force attack.


 

Privacy Statement
Copyright 2010, SecurityFocus