CWE-287
Improper Authentication
Description
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-114 · CAPEC-115 · CAPEC-151 · CAPEC-194 · CAPEC-22 · CAPEC-57 · CAPEC-593 · CAPEC-633 · CAPEC-650 · CAPEC-94
CVEs mapped to this weakness (2,419)
page 121 of 121| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2004-2734 | 0.00 | — | 0.04 | Dec 31, 2004 | webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with an inconsistent lowercase directory tag for a volume, which allows remote attackers to bypass access control to the WEB-INF folder. | |||
| CVE-2004-2182 | 0.00 | — | 0.01 | Dec 31, 2004 | Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the user session ID information used by the session server. | |||
| CVE-2004-2724 | 0.00 | — | 0.02 | Dec 31, 2004 | LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server crash and client CPU consumption) via a username beginning with percent (%) followed by a null character. | |||
| CVE-2004-1760 | 0.00 | — | 0.04 | Jan 21, 2004 | The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not require authentication, which allows remote attackers to gain administrator privileges by connecting to TCP port 14247. | |||
| CVE-2003-1434 | 0.00 | — | 0.01 | Dec 31, 2003 | login_ldap 3.1 and 3.2 allows remote attackers to initiate unauthenticated bind requests if (1) bind_anon_dn is on, which allows a bind with no password provided, (2) bind_anon_cred is on, which allows a bind with no DN, or (3) bind_anon is on, which allows a bind with no DN or… | |||
| CVE-2003-1489 | 0.00 | — | 0.01 | Dec 31, 2003 | upload.php in Truegalerie 1.0 allows remote attackers to read arbitrary files by specifying the target filename in the file cookie in form.php, then downloading the file from the image gallery. | |||
| CVE-2003-1475 | 0.00 | — | 0.01 | Dec 31, 2003 | Netbus 1.5 through 1.7 allows more than one client to be connected at the same time, but only prompts the first connection for authentication, which allows remote attackers to gain access. | |||
| CVE-2003-1433 | 0.00 | — | 0.01 | Dec 31, 2003 | Epic Games Unreal Engine 226f through 436 does not validate the challenge key, which allows remote attackers to exhaust the player limit by joining the game multiple times. | |||
| CVE-2003-0216 | 0.00 | — | 0.02 | May 12, 2003 | Unknown vulnerability in Cisco Catalyst 7.5(1) allows local users to bypass authentication and gain access to the enable mode without a password. | |||
| CVE-2002-2397 | 0.00 | — | 0.02 | Dec 31, 2002 | Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed (1) source IP address of 127.0.0.1 or (2) network address of 127.0.0.0. | |||
| CVE-2002-2279 | 0.00 | — | 0.02 | Dec 31, 2002 | Unspecified vulnerability in the bind function in config.inc of aldap 0.09 allows remote attackers to authenticate with Manager permissions. | |||
| CVE-2002-0507 | 0.00 | — | 0.02 | Aug 12, 2002 | An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually… | |||
| CVE-2001-1585 | 0.00 | — | 0.02 | Dec 31, 2001 | SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1, available from 2001-01-18 through 2001-02-08, does not perform a challenge-response step to ensure that the client has the proper private key, which allows remote attackers to… | |||
| CVE-2000-1211 | 0.00 | — | 0.01 | Dec 16, 2000 | Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities. | |||
| CVE-2000-0483 | 0.00 | — | 0.03 | Jun 15, 2000 | The DocumentTemplate package in Zope 2.2 and earlier allows a remote attacker to modify DTMLDocuments or DTMLMethods without authorization. | |||
| CVE-2000-0062 | 0.00 | — | 0.02 | Jan 4, 2000 | The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities. | |||
| CVE-1999-0987 | 0.00 | — | 0.05 | Nov 18, 1999 | Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name. | |||
| CVE-1999-0680 | 0.00 | — | 0.06 | Aug 9, 1999 | Windows NT Terminal Server performs extra work when a client opens a new connection but before it is authenticated, allowing for a denial of service. | |||
| CVE-1999-0366 | 0.00 | — | 0.04 | Feb 8, 1999 | In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank password, through a problem with a null NT hash value. |
- CVE-2004-2734Dec 31, 2004risk 0.00cvss —epss 0.04
webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with an inconsistent lowercase directory tag for a volume, which allows remote attackers to bypass access control to the WEB-INF folder.
- CVE-2004-2182Dec 31, 2004risk 0.00cvss —epss 0.01
Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the user session ID information used by the session server.
- CVE-2004-2724Dec 31, 2004risk 0.00cvss —epss 0.02
LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server crash and client CPU consumption) via a username beginning with percent (%) followed by a null character.
- CVE-2004-1760Jan 21, 2004risk 0.00cvss —epss 0.04
The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not require authentication, which allows remote attackers to gain administrator privileges by connecting to TCP port 14247.
- CVE-2003-1434Dec 31, 2003risk 0.00cvss —epss 0.01
login_ldap 3.1 and 3.2 allows remote attackers to initiate unauthenticated bind requests if (1) bind_anon_dn is on, which allows a bind with no password provided, (2) bind_anon_cred is on, which allows a bind with no DN, or (3) bind_anon is on, which allows a bind with no DN or…
- CVE-2003-1489Dec 31, 2003risk 0.00cvss —epss 0.01
upload.php in Truegalerie 1.0 allows remote attackers to read arbitrary files by specifying the target filename in the file cookie in form.php, then downloading the file from the image gallery.
- CVE-2003-1475Dec 31, 2003risk 0.00cvss —epss 0.01
Netbus 1.5 through 1.7 allows more than one client to be connected at the same time, but only prompts the first connection for authentication, which allows remote attackers to gain access.
- CVE-2003-1433Dec 31, 2003risk 0.00cvss —epss 0.01
Epic Games Unreal Engine 226f through 436 does not validate the challenge key, which allows remote attackers to exhaust the player limit by joining the game multiple times.
- CVE-2003-0216May 12, 2003risk 0.00cvss —epss 0.02
Unknown vulnerability in Cisco Catalyst 7.5(1) allows local users to bypass authentication and gain access to the enable mode without a password.
- CVE-2002-2397Dec 31, 2002risk 0.00cvss —epss 0.02
Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed (1) source IP address of 127.0.0.1 or (2) network address of 127.0.0.0.
- CVE-2002-2279Dec 31, 2002risk 0.00cvss —epss 0.02
Unspecified vulnerability in the bind function in config.inc of aldap 0.09 allows remote attackers to authenticate with Manager permissions.
- CVE-2002-0507Aug 12, 2002risk 0.00cvss —epss 0.02
An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually…
- CVE-2001-1585Dec 31, 2001risk 0.00cvss —epss 0.02
SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1, available from 2001-01-18 through 2001-02-08, does not perform a challenge-response step to ensure that the client has the proper private key, which allows remote attackers to…
- CVE-2000-1211Dec 16, 2000risk 0.00cvss —epss 0.01
Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities.
- CVE-2000-0483Jun 15, 2000risk 0.00cvss —epss 0.03
The DocumentTemplate package in Zope 2.2 and earlier allows a remote attacker to modify DTMLDocuments or DTMLMethods without authorization.
- CVE-2000-0062Jan 4, 2000risk 0.00cvss —epss 0.02
The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities.
- CVE-1999-0987Nov 18, 1999risk 0.00cvss —epss 0.05
Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name.
- CVE-1999-0680Aug 9, 1999risk 0.00cvss —epss 0.06
Windows NT Terminal Server performs extra work when a client opens a new connection but before it is authenticated, allowing for a denial of service.
- CVE-1999-0366Feb 8, 1999risk 0.00cvss —epss 0.04
In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank password, through a problem with a null NT hash value.