Back to search
CVE-2007-6408
Published: Dec 17, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
IBM Tivoli Provisioning Manager Express provides unspecified information in error messages when (1) attempted duplication of a username occurs when creating an account or (2) when trying to login using a valid username, which makes it easier for remote attackers to enumerate usernames.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20071205 [ELEYTT] Public Advisory 05-12-2007
mailing-list
x_refsource_BUGTRAQ
provisioningmanager-user-info-disclosure(38866)
vdb-entry
x_refsource_XF
3458
third-party-advisory
x_refsource_SREASON
26724
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now