Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell eDirectory密码不够强壮漏洞
Vulnerability Description
Novell eDirectory是美国Novell公司的一套结合了身份管理架构和目录服务技术的身份管理基础平台。该平台提供认证策略、数据备份和恢复服务、数据容灾等功能。 Novell eDirectory对加密处理不够强壮,可导致本地攻击者恢复密码。 Novell eDirectory加密使用大小写无关方式处理密码,因此一个8字符长度的密码只有62^8-1个组合的可能,而大小写相关的加密方式存在88^8-1个组合。因此攻击者可以更容易的进行暴力破解进行密码恢复操作。
CVSS Information
N/A
Vulnerability Type
N/A