CVE-2011-0718
Red Hat Network Satellite Server 5.4 - Improper Authentication via Missing Login Delay
Title source: llmDescription
Red Hat Network (RHN) Satellite Server 5.4 does not use a time delay after a failed login attempt, which makes it easier for remote attackers to conduct brute force password guessing attacks.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/46528
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0491
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0300.html
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=672159
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1025116
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/65657
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/43487
Scores
EPSS
0.0126
EPSS Percentile
66.0%
Details
CWE
CWE-287
Status
published
Products (1)
redhat/network_satellite_server
5.4
Published
Feb 25, 2011
Tracked Since
Feb 18, 2026