Sign-up

ID

VAR-200501-0251


CVE

CVE-2004-1105


TITLE

Nortel Networks Contivity VPN Client information leakage vulnerability

Trust: 0.8

sources: CERT/CC: VU#830214

DESCRIPTION

Nortel Networks Contivity VPN Client displays a different error message depending on whether the username is valid or invalid, which could allow remote attackers to gain sensitive information. It is reported that Nortel Contivity VPN client is susceptible to a username enumeration vulnerability. Attackers may exploit this vulnerability to discern valid usernames. This may aid them in brute force password cracking, or other attacks. Versions prior to 5.01_030 are reported susceptible to this issue. Nortel Networks Contivity VPN Client is the client software for Nortel VPN devices. Name: User Account Enumeration in Nortel Contivity VPN Vendor: Nortel Networks Products Affected: Nortel Networks Contivity VPN Client Type: Remote User Account Enumeration Severity: Medium I. This bug was discovered as part of a penetration test we carried out on the VPN server of a client. II. Description 1. III. Impact The different error messages could enable a malicious person to guess valid user names on the Contivity VPN/Firewall, and then launch password-guessing attacks against these accounts. IV. Solution This issue is resolved in Contivity VPN Client for Windows V5.01_030 Refer to the CERT VU Note at http://www.kb.cert.org/vuls/id/830214 and our full advisory at http://www.nii.co.in/vuln/contivity.html for information about vendor response, applying the patches, and other technical details. V. About Network Intelligence India We're a leading provider of information security services and products. Our AuditPro suite of security assessment software provides comprehensive, policy-based security audits for Windows 2000, 2003, XP, Redhat Linux, Sun Solaris, Oracle and MS SQL Servers. For more information, visit us at http://www.nii.co.in **** Happy Diwali AND Eid Mubarak! ****

Trust: 2.07

sources: NVD: CVE-2004-1105 // CERT/CC: VU#830214 // BID: 11623 // VULHUB: VHN-9535 // PACKETSTORM: 35003

AFFECTED PRODUCTS

vendor:nortelmodel:contivityscope:eqversion:4.91

Trust: 1.6

vendor:nortelmodel: - scope: - version: -

Trust: 0.8

vendor:nortelmodel:networks contivity vpn clientscope:eqversion:4.91

Trust: 0.3

vendor:nortelmodel:networks contivity vpn client 1 030scope:neversion:5.0

Trust: 0.3

sources: CERT/CC: VU#830214 // BID: 11623 // CNNVD: CNNVD-200501-213 // NVD: CVE-2004-1105

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2004-1105
value: MEDIUM

Trust: 1.0

CARNEGIE MELLON: VU#830214
value: 0.65

Trust: 0.8

CNNVD: CNNVD-200501-213
value: MEDIUM

Trust: 0.6

VULHUB: VHN-9535
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2004-1105
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-9535
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CERT/CC: VU#830214 // VULHUB: VHN-9535 // CNNVD: CNNVD-200501-213 // NVD: CVE-2004-1105

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-1105

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200501-213

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200501-213

EXTERNAL IDS

db:CERT/CCid:VU#830214

Trust: 2.9

db:BIDid:11623

Trust: 2.0

db:NVDid:CVE-2004-1105

Trust: 1.7

db:CNNVDid:CNNVD-200501-213

Trust: 0.7

db:XFid:17988

Trust: 0.6

db:VULNERABILITY NOTEid:VU#830214

Trust: 0.6

db:FULLDISCid:20041110 NORTEL NETWORKS CONTIVITY VPN CLIENT INFORMATION LEAKAGE VULNERABILITY

Trust: 0.6

db:VULHUBid:VHN-9535

Trust: 0.1

db:PACKETSTORMid:35003

Trust: 0.1

sources: CERT/CC: VU#830214 // VULHUB: VHN-9535 // BID: 11623 // PACKETSTORM: 35003 // CNNVD: CNNVD-200501-213 // NVD: CVE-2004-1105

REFERENCES

url:http://www.kb.cert.org/vuls/id/830214

Trust: 2.1

url:http://www.kb.cert.org/vuls/id/crdy-626n7f

Trust: 2.0

url:http://www.nii.co.in/vuln/contivity.html

Trust: 1.8

url:http://www.securityfocus.com/bid/11623

Trust: 1.7

url:http://archives.neohapsis.com/archives/fulldisclosure/2004-11/0291.html

Trust: 1.7

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/17988

Trust: 1.1

url:about vulnerability notes

Trust: 0.8

url:contact us about this vulnerability

Trust: 0.8

url:provide a vendor statement

Trust: 0.8

url:http://xforce.iss.net/xforce/xfdb/17988

Trust: 0.6

url:http://www.nortelnetworks.com/products/01/contivity/multi_os/

Trust: 0.3

url:http://www.nii.co.in

Trust: 0.1

sources: CERT/CC: VU#830214 // VULHUB: VHN-9535 // BID: 11623 // PACKETSTORM: 35003 // CNNVD: CNNVD-200501-213 // NVD: CVE-2004-1105

CREDITS

K. K. Mookhey of Network Intelligence India reported this vulnerability.

Trust: 0.3

sources: BID: 11623

SOURCES

db:CERT/CCid:VU#830214
db:VULHUBid:VHN-9535
db:BIDid:11623
db:PACKETSTORMid:35003
db:CNNVDid:CNNVD-200501-213
db:NVDid:CVE-2004-1105

LAST UPDATE DATE

2024-08-14T14:42:15.762000+00:00


SOURCES UPDATE DATE

db:CERT/CCid:VU#830214date:2004-11-08T00:00:00
db:VULHUBid:VHN-9535date:2017-07-11T00:00:00
db:BIDid:11623date:2004-11-08T00:00:00
db:CNNVDid:CNNVD-200501-213date:2006-08-30T00:00:00
db:NVDid:CVE-2004-1105date:2017-07-11T01:30:44.747

SOURCES RELEASE DATE

db:CERT/CCid:VU#830214date:2004-11-08T00:00:00
db:VULHUBid:VHN-9535date:2005-01-10T00:00:00
db:BIDid:11623date:2004-11-08T00:00:00
db:PACKETSTORMid:35003date:2004-11-12T03:43:05
db:CNNVDid:CNNVD-200501-213date:2005-01-10T00:00:00
db:NVDid:CVE-2004-1105date:2005-01-10T05:00:00