CVE-2001-1339

Description

Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password guessing attacks.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

anybus / ipc@chip_firmware

References

MISChttp://www.kb.cert.org/vuls/id/198979
MISChttp://www.securityfocus.com/archive/1/186418
MISChttp://www.securityfocus.com/bid/2771
MISChttp://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00010.html
MISChttp://www.iss.net/security_center/static/6605.php