← Back to CVEs
CVE-2002-2119
CRITICAL9.8
Description
Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing.
CVE Details
CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published12/31/2002
Last Modified4/16/2026
Sourcenvd
Honeypot Sightings0
Affected Products
novell:edirectory
Weaknesses (CWE)
CWE-178
References
http://www.iss.net/security_center/static/9229.php(cve@mitre.org)
http://www.securityfocus.com/bid/4893(cve@mitre.org)
http://archives.neohapsis.com/archives/bugtraq/2002-05/0273.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.iss.net/security_center/static/9229.php(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/4893(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.