Ibm: >> Lotus Instant Messaging And Web Conferencing >> 6.5.1 Security Vulnerabilities
The Sametime server in IBM Lotus Instant Messaging and Web Conferencing 6.5.1 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to enumerate valid usernames.
CVSS Score
5.0
EPSS Score
0.002
Published
2009-07-13