Inconsistent Login Message Vulnerability

Inconsistent Login Message Vulnerability

CVE-2004-0243 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.

Learn more about our Web Application Penetration Testing UK.