Vulnerabilities

CVE-2007-4422

by Fred · 18/08/2007

The login interface in Symantec Enterprise Firewall 6.x, when a VPN with pre-shared key (PSK) authentication is enabled, generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid usernames.

Date published : 2007-08-18

http://www.securityfocus.com/bid/25338

http://www.symantec.com/avcenter/security/Content/2007.08.16.html

Similar

Tags: Cybersecurity Alert