OpenSSH 3.9p1-portable PAM Authentication Remote Information Disclosure
John Dalbec
jpdalbec at ysu.edu
Tue Dec 7 14:36:11 UTC 2004
Does this affect -Legacy?
04.48.30 CVE: CAN-2003-0190
Platform: Cross Platform
Title: OpenSSH-portable PAM Authentication Remote Information
Disclosure
Description: OpenSSH is an open source implementation of the Secure
Shell protocol. It is vulnerable to a remote information disclosure
issue that allows an attacker to guess valid user names on the target
system. OpenSSH version 3.9p1 is known to be vulnerable.
Ref: http://www.securityfocus.com/advisories/7575
More information about the fedora-legacy-list
mailing list