Account Enumeration Vulnerability in Beck IPC GmbH IPC@CHIP TelnetD Server
CVE-2001-1338

Currently unrated

Key Information:

Vendor: Beck Ipc Gmbh
Status: Ipc At Chip Telnetd Server
Vendor: CVE Published:; 24 May 2001

🔔 Create Beck Ipc Gmbh Vulnerability Alert

What is CVE-2001-1338?

The IPC@CHIP TelnetD server produced by Beck IPC GmbH is vulnerable due to its inconsistent handling of login requests. It generates different responses based on valid versus invalid login names, which can be exploited by remote attackers. This behavior enables malicious actors to identify existing accounts on the system, thereby posing a significant risk to system security. Proper mitigation strategies should be implemented to prevent unauthorized access and ensure the integrity of user credentials.

References

http://www.securityfocus.com/bid/2773

vdb-entryx_refsource_BID

http://www.kb.cert.org/vuls/id/198979

third-party-advisoryx_refsource_CERT-VN

http://www.iss.net/security_center/static/6595.php

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
May 1, 2002
Vulnerability published
May 24, 2001