CVE-2005-4029

WebEOC before 6.0.2 allows remote attackers to obtain valid usernames via the HTML source of the WebEOC login webpage, which could be useful in other attacks such as locking out valid users via brute force methods.

Published: Dec 5, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-4029
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
esi_products / webeoc	-	6.0.1.x

http://www.kb.cert.org/vuls/id/170394

Vulnerability Database

290,301

CVE-2005-4029