CVE-2001-1339

CRITICAL

IPC@CHIP - DoS

Title source: llm

Description

Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password guessing attacks.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Courtesy Sentry Research Labs · textremotemultiple

https://www.exploit-db.com/exploits/20881

View Code ZIP pw:eip

References (5)

[Broken Link] http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00010.html

[Broken Link, Vendor Advisory] http://www.iss.net/security_center/static/6605.php

[Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/198979

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/186418

[Broken Link, Exploit, Patch, Third Party Advisory, VDB Entry, Vendor Advisory] http://www.securityfocus.com/bid/2771

Scores

CVSS v3 9.8

EPSS 0.2428

EPSS Percentile 96.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-307

Status published

Products (1)

anybus/ipc\@chip_firmware

Published May 24, 2001

Tracked Since Feb 18, 2026