Vulnerabilities > CVE-2001-1483 - Information Exposure Through Discrepancy vulnerability in Nrl.Navy One-Time Passwords in Everything 2.32/2.4

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

nrl-navy

CWE-203

NVD

Published: 2001-12-31

Updated: 2024-02-14

Summary

One-Time Passwords In Everything (a.k.a OPIE) 2.32 and 2.4 allows remote attackers to determine the existence of user accounts by printing random passphrases if the user account does not exist and static passphrases if the user account does exist.

Vulnerable Configurations

Part	Description	Count
Application	Nrl.Navy Nrl.Navy ONE Time Passwords IN Everything 2.32 Nrl.Navy ONE Time Passwords IN Everything 2.4	2

Common Weakness Enumeration (CWE)

CWE-203 - Information Exposure Through Discrepancy

References

http://www.securityfocus.com/bid/3549
https://exchange.xforce.ibmcloud.com/vulnerabilities/7572
http://www.securityfocus.com/archive/1/20011115221226.7C93E186B0%40atlas.dgp.toronto.edu