Lotus Domino 5.0.8 web server returns different error messages when a valid or invalid user is provided in HTTP requests, which allows remote attackers to determine valid user names and makes it easier to conduct brute force attacks.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-07-14T04:00:00Z

Updated: 2024-09-17T02:42:46.858Z

Reserved: 2005-07-14T00:00:00Z

Link: CVE-2002-2014

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2002-12-31T05:00:00.000

Modified: 2008-09-05T20:32:06.323

Link: CVE-2002-2014

cve-icon Redhat

No data.