Back to search
CVE-2008-4315
Published: Nov 27, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
tog-pegasus in OpenGroup Pegasus 2.7.0 on Red Hat Enterprise Linux (RHEL) 5, Fedora 9, and Fedora 10 does not log failed authentication attempts to the OpenPegasus CIM server, which makes it easier for remote attackers to avoid detection of password guessing attacks.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=472017
x_refsource_CONFIRM
https://admin.fedoraproject.org/updates/tog-pegasus-2.7.0-7.fc9
x_refsource_CONFIRM
1021281
vdb-entry
x_refsource_SECTRACK
50278
vdb-entry
x_refsource_OSVDB
RHSA-2008:1001
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:9431
vdb-entry
signature
x_refsource_OVAL
https://admin.fedoraproject.org/updates/tog-pegasus-2.7.1-3.fc10
x_refsource_CONFIRM
togpegasus-systemlog-weak-security(46830)
vdb-entry
x_refsource_XF
32862
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now