Vulnerability Description
Nettica Corporation INTELLIPEER Email Server 1.01 displays different error messages for valid and invalid account names, which allows remote attackers to determine valid account names.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nettica | Intellipeer Email Server | <= 1.01 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/12661/Broken LinkPatchVendor Advisory
- http://securitytracker.com/id?1011425Broken LinkThird Party AdvisoryVDB Entry
- http://www.osvdb.org/10349Broken Link
- http://www.securityfocus.com/bid/11257Broken LinkThird Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17510Third Party AdvisoryVDB Entry
- http://secunia.com/advisories/12661/Broken LinkPatchVendor Advisory
- http://securitytracker.com/id?1011425Broken LinkThird Party AdvisoryVDB Entry
- http://www.osvdb.org/10349Broken Link
- http://www.securityfocus.com/bid/11257Broken LinkThird Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17510Third Party AdvisoryVDB Entry
FAQ
What is CVE-2004-2150?
CVE-2004-2150 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Nettica Corporation INTELLIPEER Email Server 1.01 displays different error messages for valid and invalid account names, which allows remote attackers to determine valid account names.
How severe is CVE-2004-2150?
CVE-2004-2150 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2150?
Check the references section above for vendor advisories and patch information. Affected products include: Nettica Intellipeer Email Server.