{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-07-26T00:00:00", "descriptions": [{"lang": "en", "value": "Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute force username and password guessing."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2002-09-10T09:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20020726 SECURITY.NNOV: multiple vulnerabilities in JanaServer", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.html"}, {"name": "jana-pop3-bruteforce(9688)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/9688.php"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-1065", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute force username and password guessing."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20020726 SECURITY.NNOV: multiple vulnerabilities in JanaServer", "refsource": "BUGTRAQ", "url": "http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.html"}, {"name": "jana-pop3-bruteforce(9688)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/9688.php"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T03:12:17.033Z"}, "title": "CVE Program Container", "references": [{"name": "20020726 SECURITY.NNOV: multiple vulnerabilities in JanaServer", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.html"}, {"name": "jana-pop3-bruteforce(9688)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/9688.php"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-1065", "datePublished": "2002-08-31T04:00:00", "dateReserved": "2002-08-30T00:00:00", "dateUpdated": "2024-08-08T03:12:17.033Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:t._hauck:jana_web_server:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "09026053-0568-4D8F-AEB0-F7850C655635", "vulnerable": true}, {"criteria": "cpe:2.3:a:t._hauck:jana_web_server:1.45:*:*:*:*:*:*:*", "matchCriteriaId": "5C0BC837-4993-4780-B4B0-88D4C1A42BD5", "vulnerable": true}, {"criteria": "cpe:2.3:a:t._hauck:jana_web_server:1.46:*:*:*:*:*:*:*", "matchCriteriaId": "D4505B16-611E-422F-995D-748281466621", "vulnerable": true}, {"criteria": "cpe:2.3:a:t._hauck:jana_web_server:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "525A467E-9EFF-47AE-AEBC-BE769073A64C", "vulnerable": true}, {"criteria": "cpe:2.3:a:t._hauck:jana_web_server:2.0_beta1:*:*:*:*:*:*:*", "matchCriteriaId": "1812EAA2-85E0-47CE-A704-646AF4AA5CF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:t._hauck:jana_web_server:2.0_beta2:*:*:*:*:*:*:*", "matchCriteriaId": "CD6D91CA-E975-49CF-BF32-1E0302D5D8AD", "vulnerable": true}, {"criteria": "cpe:2.3:a:t._hauck:jana_web_server:2.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "AD2CDD0D-387C-413A-B2E8-DB18A7E3FD3B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute force username and password guessing."}], "id": "CVE-2002-1065", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-10-04T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/9688.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/9688.php"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}