CVE-2007-2999
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-2999
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Microsoft Windows Server 2003, when time restrictions are in effect for user accounts, generates different error messages for failed login attempts with a valid user name than for those with an invalid user name, which allows context-dependent attackers to determine valid Active Directory account names.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Active Directory Logon Hours 用户名列举缺陷
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
当对用户账户登录设置的时间限制被启用时,Microsoft Windows Server 2003会根据账户是否有效来生成不同的错误信息,这使得见机行事的攻击者可以猜测出有效的Active Directory账户名。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-2999
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-2999
Please Login to view more intelligence information
Same Patch Batch · n/a · 2007-06-04 · 24 CVEs total
| CVE-2007-2996 | IBM AIX Perl Interpreter 本地任意代码执行漏洞 | |
| CVE-2007-1862 | Apache mod_mem_cache远程信息泄露漏洞 | |
| CVE-2007-3009 | Mbedthis AppWeb URL协议格式串处理漏洞 | |
| CVE-2007-3008 | Mbedthis AppWeb HTTP TRACE 信息泄露漏洞 | |
| CVE-2007-3007 | PHP realpath()函数绕过安全限制漏洞 | |
| CVE-2007-3006 | Acoustica MP3 CD Burner播放列表文件处理栈溢出漏洞 | |
| CVE-2007-3003 | MyBloggie Index.PHP 多个SQL注入漏洞 | |
| CVE-2007-3002 | PHP JackKnife 多个输入验证漏洞 | |
| CVE-2007-3001 | PHP JackKnife 跨站脚本攻击漏洞 | |
| CVE-2007-3000 | PHP JackKnife 多个输入验证漏洞 | |
| CVE-2007-2998 | OpenVMS Integrity Servers 拒绝服务攻击 | |
| CVE-2007-2997 | SalesCart Shopping Cart Reorder2.ASP 多个SQL注入漏洞 | |
| CVE-2007-1593 | Symantec Veritas Volume Replicator管理服务远程拒绝服务漏洞 | |
| CVE-2007-2995 | IBM AIX sysmgt.websm.rte 未明漏洞 | |
| CVE-2007-2994 | DGNews NewsID Parameter SQL注入漏洞 | |
| CVE-2007-2872 | PHP 数字错误漏洞 | |
| CVE-2007-2387 | Apple Xserve Lights-Out管理系统IPMI远程权限提升漏洞 | |
| CVE-2007-2993 | Omegasoft Insel 跨站脚本攻击漏洞 | |
| CVE-2007-2992 | Omegasoft Insel 多个输入验证漏洞 | |
| CVE-2007-2991 | Evenzia Content Management Systems (CMS) 跨站脚本攻击漏洞 |
Showing top 20 of 24 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2007-2999
No comments yet