{"api_version":"1","generated_at":"2026-04-08T13:36:05+00:00","cve":"CVE-2005-4029","urls":{"html":"https://cve.report/CVE-2005-4029","api":"https://cve.report/api/cve/CVE-2005-4029.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2005-4029","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2005-4029"},"summary":{"title":"CVE-2005-4029","description":"WebEOC before 6.0.2 allows remote attackers to obtain valid usernames via the HTML source of the WebEOC login webpage, which could be useful in other attacks such as locking out valid users via brute force methods.","state":"PUBLIC","assigner":"cve@mitre.org","published_at":"2005-12-05 11:03:00","updated_at":"2008-09-05 20:55:00"},"problem_types":["NVD-CWE-Other"],"metrics":[],"references":[{"url":"http://www.kb.cert.org/vuls/id/170394","name":"VU#170394","refsource":"CERT-VN","tags":["Third Party Advisory","US Government Resource"],"title":"US-CERT Vulnerability Note VU#170394","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2005-4029","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2005-4029","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2005","cve_id":"4029","vulnerable":"1","versionEndIncluding":"6.0.1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"esi_products","cpe5":"webeoc","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2005-4029","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"WebEOC before 6.0.2 allows remote attackers to obtain valid usernames via the HTML source of the WebEOC login webpage, which could be useful in other attacks such as locking out valid users via brute force methods."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"VU#170394","refsource":"CERT-VN","url":"http://www.kb.cert.org/vuls/id/170394"}]}},"nvd":{"publishedDate":"2005-12-05 11:03:00","lastModifiedDate":"2008-09-05 20:55:00","problem_types":["NVD-CWE-Other"],"metrics":{"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":5},"severity":"MEDIUM","exploitabilityScore":10,"impactScore":2.9,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:esi_products:webeoc:*:*:*:*:*:*:*:*","versionEndIncluding":"6.0.1","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2005","CveId":"4029","Ordinal":"14542","Title":"CVE-2005-4029","CVE":"CVE-2005-4029","Year":"2005"},"notes":[{"CveYear":"2005","CveId":"4029","Ordinal":"1","NoteData":"WebEOC before 6.0.2 allows remote attackers to obtain valid usernames via the HTML source of the WebEOC login webpage, which could be useful in other attacks such as locking out valid users via brute force methods.","Type":"Description","Title":null},{"CveYear":"2005","CveId":"4029","Ordinal":"2","NoteData":"2005-12-05","Type":"Other","Title":"Published"}]}}}