Vulnerabilities > Andrew J Korty

DATE CVE VULNERABILITY TITLE RISK
2009-04-08 CVE-2009-1273 Credentials Management vulnerability in Andrew J.Korty PAM SSH 1.92
pam_ssh 1.92 and possibly other versions, as used when PAM is compiled with USE=ssh, generates different error messages depending on whether the username is valid or invalid, which makes it easier for remote attackers to enumerate usernames.
network
low complexity
andrew-j-korty CWE-255
5.0