Information Disclosure Vulnerability in AmTote International Homebet Program

Information Disclosure Vulnerability in AmTote International Homebet Program

CVE-2001-1528 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

AmTote International homebet program returns different error messages when invalid account numbers and PIN codes are provided, which allows remote attackers to determine the existence of valid account numbers via a brute force attack.

Learn more about our Web Application Penetration Testing UK.