CVE-2002-2119

EPSS 1.09%
Published 31.12.2002 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Novell ≫ Edirectory Version8.6.2

Novell ≫ Edirectory Version8.7

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.09%	0.77

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-178 Improper Handling of Case Sensitivity

The product does not properly account for differences in case sensitivity when accessing or determining the properties of a resource, leading to inconsistent results.

http://archives.neohapsis.com/archives/bugtraq/2002-05/0273.html

Broken Link

http://www.iss.net/security_center/static/9229.php

Broken Link

http://www.securityfocus.com/bid/4893

Third Party Advisory

Broken Link

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2002-2119

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-2119

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-2119

EUVD