Local User Account Listing Vulnerability in IBM AS/400
CVE-2002-1731

Currently unrated

Key Information:

Vendor: IBM
Status: Os 400
Vendor: CVE Published:; 31 December 2002

Summary

A security flaw in the System Request menu of IBM AS/400 allows local users to enumerate valid user accounts. By simply viewing the object names classified as user profiles, attackers can gain insight into existing accounts, potentially leading to unauthorized access or privilege escalation. This vulnerability highlights the need for enhanced access controls and monitoring of user account activities on affected systems.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/8179

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/4059

vdb-entryx_refsource_BID

http://securitytracker.com/id?1003507

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability Reserved
Jun 21, 2005
Vulnerability published
Dec 31, 2002