Watchguard : Security Vulnerabilities, CVEs, Published In 2008 (Information Leak)
The PPTP VPN service in Watchguard Firebox before 10, when performing the MS-CHAPv2 authentication handshake, generates different error codes depending on whether the username is valid or invalid, which allows remote attackers to enumerate valid usernames.
Max CVSS
5.0
EPSS Score
1.09%
Published
2008-04-07
Updated
2017-08-08
1 vulnerabilities found