Total vulnerabilities in the database
The web login functionality (c/portal/login) in Novell Teaming 1.0 through SP3 (1.0.3) generates different error messages depending on whether the username is valid or invalid, which makes it easier for remote attackers to enumerate usernames.
| Software | From | Fixed in |
|---|---|---|
| novell / teaming | 1.0.2 | 1.0.2.x |
| novell / teaming | 1.0-sp3 | 1.0-sp3.x |
| novell / teaming | 1.0-sp2 | 1.0-sp2.x |
| novell / teaming | 1.0.1 | 1.0.1.x |
| novell / teaming | 1.0.3 | 1.0.3.x |
| novell / teaming | 1.0 | 1.0.x |
| novell / teaming | 1.0-sp1 | 1.0-sp1.x |