Vulnerabilities > CVE-1999-1152 - Improper Restriction of Excessive Authentication Attempts vulnerability in Compaq Microcom 6000 Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

compaq

CWE-307

NVD

Published: 1998-06-03

Updated: 2024-02-09

Summary

Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of failed login attempts, which allows remote attackers to guess usernames or passwords via a brute force attack.

Vulnerable Configurations

Part	Description	Count
OS	Compaq Compaq Microcom 6000 Firmware -	1
Hardware	Compaq Compaq Microcom 6000 -	1

Common Weakness Enumeration (CWE)

CWE-307 - Improper Restriction of Excessive Authentication Attempts

References

http://marc.info/?l=bugtraq&m=90296493106214&w=2