Authentication Bypass Vulnerability in RealChat 3.5.1b

Authentication Bypass Vulnerability in RealChat 3.5.1b

CVE-2005-2403 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The login protocol in RealChat 3.5.1b does not use authentication, which allows remote attackers to log on as other users by sniffing the beginning of a chat session and replaying it via a modified username.

Learn more about our User Device Pen Test.