Vulnerability CVE-2004-1602 - CERT Civis.Net

Vulnerability Name:

CVE-2004-1602 (CCN-17724)

Assigned:

2004-10-15

Published:

2004-10-15

Updated:

2017-07-11

Summary:

ProFTPD 1.2.x, including 1.2.8 and 1.2.10, responds in a different amount of time when a given username exists, which allows remote attackers to identify valid usernames by timing the server response.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: CCN
Type: BugTraq Mailing List, Sun Oct 17 2004 - 06:35:50 CDT
ProFTPD 1.2.x remote users enumeration bug - correction

Source: MITRE
Type: CNA
CVE-2004-1602

Source: BUGTRAQ
Type: UNKNOWN
20041015 ProFTPD 1.2.x remote users enumeration bug

Source: CCN
Type: LSS Security Advisory #LSS-2004-10-02
ProFTPD 1.2.x remote users enumeration bug

Source: MISC
Type: Exploit, Patch, Vendor Advisory
http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02

Source: CCN
Type: SECTRACK ID: 1011687
ProFTPd Login Timing Differences Disclose Valid User Account Names to Remote Users

Source: SECTRACK
Type: Exploit, Patch, Vendor Advisory
1011687

Source: CCN
Type: OSVDB ID: 10758
ProFTPD Login Timing Account Name Enumeration

Source: BID
Type: Exploit, Vendor Advisory
11430

Source: CCN
Type: BID-11430
ProFTPD Authentication Delay Username Enumeration Vulnerability

Source: XF
Type: UNKNOWN
proftpd-info-disclosure(17724)

Source: XF
Type: UNKNOWN
proftpd-info-disclosure(17724)

Vulnerable Configuration:

Configuration 1:

cpe:/a:proftpd_project:proftpd:1.2:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.0_rc1:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.0_rc2:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.0_rc3:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.1:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.2:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.2_rc1:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.2_rc3:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.3:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.4:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.5:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.5_rc1:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.6:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.7:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.7_rc1:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.7_rc2:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.7_rc3:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.8:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.8_rc1:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.8_rc2:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.9:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.9_rc1:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.9_rc2:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2.9_rc3:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre1:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre2:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre3:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre4:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre5:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre6:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre7:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre8:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre9:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre10:*:*:*:*:*:*:*

OR cpe:/a:proftpd_project:proftpd:1.2_pre11:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:proftpd:proftpd:1.2.0:rc2:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.4:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.2:rc3:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.5:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.7:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.8:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.8:rc1:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.8:rc2:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.9:rc1:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.9:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.9:rc3:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.9:rc2:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.7:rc3:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.7:rc2:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.7:rc1:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.6:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.5:rc1:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.3:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.2:rc1:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.2:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.1:*:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.0:rc3:*:*:*:*:*:*

OR cpe:/a:proftpd:proftpd:1.2.0:rc1:*:*:*:*:*:*

Denotes that component is vulnerable