CVE-2014-5137 Information

Description

Innovative Interfaces Sierra Library Services Platform 1.2_3 provides different responses for login request depending on whether the user account exists which allows remote attackers to enumerate account names via a series of login requests possibly related to the Webpac Pro submodule.

Reference

http://www.securityfocus.com/archive/1/533267/100/0/threaded