CVE-2005-2771

Name of the Vulnerable Software and Affected Versions WRQ Reflection for Secure IT Windows Server version 6.0

Description The software processes access and deny lists in a case-sensitive manner, which could allow remote attackers to bypass intended restrictions and login to accounts that should be denied, as previous versions were case-insensitive.

Recommendations For version 6.0, consider temporarily restricting access to sensitive accounts until a configuration or update can be applied to handle access and deny lists in a case-insensitive manner.