CVE-2006-6052

Medium

5/10

Summary

NetEpi Case Manager before 0.98 generates different error messages depending on whether or not a username is valid, which allows remote attackers to enumerate valid usernames.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Nov 22, 2006

CVE-2006-6052

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS