Published: 31/12/2003 Updated: 11/07/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote malicious users to gain privileges via brute force password guessing attacks.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco leap

source: wwwsecurityfocuscom/bid/8755/info It has been reported that Cisco LEAP (Lightweight Extensible Authentication Protocol) is prone to a password disclosure weakness that may allow a remote user to steal user passwords The issue may be exploited out by brute forcing user passwords using dictionary attacks Successful exploitation o ...

NVD-CWE-Other http://www.cisco.com/warp/public/707/cisco-sn-20030802-leap.shtml http://www.securityfocus.com/archive/1/340365 http://www.securityfocus.com/archive/1/340119 http://www.kb.cert.org/vuls/id/473108 http://www.securityfocus.com/bid/8755 http://www.osvdb.org/15209 http://marc.info/?l=bugtraq&m=108135227731965&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/12804 https://nvd.nist.gov https://www.exploit-db.com/exploits/23212/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-1096

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect