CVE-2000-1032

2001-01-2205:00:00

mitre

www.cve.org

AI Score

6.9

Confidence

Low

EPSS

0.006

Percentile

78.7%

JSON

The client authentication interface for Check Point Firewall-1 4.0 and earlier generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to identify valid usernames on the firewall.

References

www.osvdb.org/1632

www.securityfocus.com/archive/1/142808

www.securityfocus.com/bid/1890

exchange.xforce.ibmcloud.com/vulnerabilities/5816