Vulnerabilities > CVE-2000-1030 - Unspecified vulnerability in Csandt Corporatetime FOR the web
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
CS&T CorporateTime for the Web returns different error messages for invalid usernames and invalid passwords, which allows remote attackers to determine valid usernames on the server.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |