CVE-2003-1096

Cisco LEAP - Dictionary Attack via Password Brute Force

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-1096. PoCs published by Cisco Security.

AI-analyzed exploit summary The provided text describes a vulnerability in Cisco LEAP (CVE-2003-1096) that allows remote attackers to brute-force user passwords via dictionary attacks, leading to potential unauthorized network access. No actual exploit code is present; it is a vulnerability description.

Description

The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote attackers to gain privileges via brute force password guessing attacks.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Cisco Security · textremotehardware

https://www.exploit-db.com/exploits/23212

View Code ZIP pw:eip

The provided text describes a vulnerability in Cisco LEAP (CVE-2003-1096) that allows remote attackers to brute-force user passwords via dictionary attacks, leading to potential unauthorized network access. No actual exploit code is present; it is a vulnerability description.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Theoretical

Target: Cisco LEAP (Lightweight Extensible Authentication Protocol)

No auth needed

Prerequisites: Network access to the target system · Dictionary or wordlist for brute-forcing

MITRE ATT&CK