Thomas Hauck Jana Server 2.x up to and including 2.2.1, and 1.4.6 and previous versions, does not restrict the number of unsuccessful login attempts, which makes it easier for remote malicious users to gain privileges via brute force username and password guessing.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
t. hauck jana web server 1.0 |
||
t. hauck jana web server 1.45 |
||
t. hauck jana web server 1.46 |
||
t. hauck jana web server 2.0 |
||
t. hauck jana web server 2.0_beta1 |
||
t. hauck jana web server 2.2.1 |
||
t. hauck jana web server 2.0_beta2 |