CVE-2004-1105

2004-12-0105:00:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

Low

0.028 Low

EPSS

Percentile

90.7%

JSON

Nortel Networks Contivity VPN Client displays a different error message depending on whether the username is valid or invalid, which could allow remote attackers to gain sensitive information.

References

archives.neohapsis.com/archives/fulldisclosure/2004-11/0291.html

www.kb.cert.org/vuls/id/830214

www.kb.cert.org/vuls/id/CRDY-626N7F

www.nii.co.in/vuln/contivity.html

www.securityfocus.com/bid/11623

exchange.xforce.ibmcloud.com/vulnerabilities/17988