Vulnerabilities > CVE-2002-1731 - Unspecified vulnerability in IBM OS 400

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

exploit available

NVD

Published: 2002-12-31

Updated: 2017-07-11

Summary

The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF.

Part	Description	Count
OS	Ibm IBM OS 400 V4R2 IBM OS 400 V4R3 IBM OS 400 V4R4 IBM OS 400 V4R5 IBM OS 400 V5R1	5

description	OS/400 User Account Name Disclosure Vulnerability. CVE-2002-1731. Local exploits for multiple platform
id	EDB-ID:21283
last seen	2016-02-02
modified	2002-02-07
published	2002-02-07
reporter	ken@FTU
source	https://www.exploit-db.com/download/21283/
title	OS/400 User Account Name Disclosure Vulnerability