|
|
CVE Reference: CVE-2006-6682 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-6682 |
|
|
Description: Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error message when a request with a valid username fails, compared to a request with an invalid username, which allows remote attackers to determine valid usernames on the system. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/30454 SAID Secunia Advisory: SA22967 OSVDB 30545 MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=394454 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=116371297325564&w=2 BID 21102 |
|
| Return to the previous page. |
