← Voltar para CVEs
CVE-2001-1339
CRITICAL9.8
Descricao
Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password guessing attacks.
Detalhes CVE
Pontuacao CVSS v3.19.8
SeveridadeCRITICAL
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado5/24/2001
Ultima modificacao4/3/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
anybus:ipc\@chipanybus:ipc\@chip_firmware
Fraquezas (CWE)
CWE-307
Referencias
http://www.iss.net/security_center/static/6605.php(cve@mitre.org)
http://www.kb.cert.org/vuls/id/198979(cve@mitre.org)
http://www.securityfocus.com/archive/1/186418(cve@mitre.org)
http://www.securityfocus.com/bid/2771(cve@mitre.org)
http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00010.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.iss.net/security_center/static/6605.php(af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/198979(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/186418(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/2771(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.