Описание
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | ignored | not security vulnerability |
| edgy | ignored | end of life |
| feisty | ignored | end of life |
| gutsy | ignored | end of life |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.
EPSS
4.3 Medium
CVSS2