Vulnerabilities > Omegasoft > Interneserviceslosungen > 7

DATE	CVE	VULNERABILITY TITLE	RISK
2008-03-04	CVE-2008-1135	Information Exposure vulnerability in Omegasoft Interneserviceslosungen 7 OMEGA (aka Omegasoft) INterneSErvicesLosungen (INSEL) 7 generates different responses depending on whether or not a username is valid in a failed login attempt, which allows remote attackers to enumerate valid usernames. network low complexity omegasoft CWE-200	5.0
2008-03-04	CVE-2008-1134	Improper Authentication vulnerability in Omegasoft Interneserviceslosungen 7 OMEGA (aka Omegasoft) INterneSErvicesLosungen (INSEL) 7 supports authentication with a cookie that lacks a shared secret, which allows remote attackers to login as an arbitrary user via a modified cookie. network low complexity omegasoft CWE-287	6.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.