header-logo
Suggest Exploit
vendor:
LEAP
by:
SecurityFocus
7.5
CVSS
HIGH
Password Disclosure Weakness
N/A
CWE
Product Name: LEAP
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

Cisco LEAP Password Disclosure Weakness

It has been reported that Cisco LEAP (Lightweight Extensible Authentication Protocol) is prone to a password disclosure weakness that may allow a remote user to steal user passwords. The issue may be exploited out by brute forcing user passwords using dictionary attacks. Successful exploitation of this weakness may allow a remote attacker to steal authentication information, potentially allowing for unauthorized network access.

Mitigation:

Enforce strong password policies and use two-factor authentication.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/8755/info

It has been reported that Cisco LEAP (Lightweight Extensible
Authentication Protocol) is prone to a password disclosure weakness that may allow a remote user to steal user passwords. The issue may be exploited out by brute forcing user passwords using dictionary attacks.

Successful exploitation of this weakness may allow a remote attacker to steal authentication information, potentially allowing for unauthorized network access. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/23212.tar.bz2

Navigation

Suggest Exploit

Services By CQR