Brute Force Vulnerability in McAfee IntruShield Security Management System
CVE-2005-2188

Currently unrated

Key Information:

Vendor: Mcafee
Status: Intrushield Security Management System
Vendor: CVE Published:; 11 July 2005

Summary

The McAfee IntruShield Security Management System has a vulnerability that allows remote attackers to exploit user ID exposure found in the URL. By guessing the Manager account, attackers could potentially gain unauthorized privileges through a brute force approach, compromising the security of the system. This creates a significant risk as sensitive operational controls may be accessed if proper countermeasures are not implemented.

References

http://marc.info/?l=bugtraq&m=112076813804503&w=2

mailing-listx_refsource_BUGTRAQ

http://securitytracker.com/id?1014422

vdb-entryx_refsource_SECTRACK

http://marc.info/?l=bugtraq&m=112066594312876&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Jul 11, 2005
Vulnerability Reserved
Jul 10, 2005