CVE-2005-3480 Information

Description

login.asp in Ringtail CaseBook 6.1.0 displays different error messages depending on whether a user exists or not which allows remote attackers to determine valid usernames.

Reference

http://secunia.com/advisories/17383 http://www.osvdb.org/20422 http://www.procheckup.com/Vulner_PR0413.php