Revision Date: | 2015-11-16 | Version: | 1 |
Title: | CVE-2003-0190 |
Description: | OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier with PAM support enabled immediately sends an error message when a user does not exist, which allows remote attackers to determine valid usernames via a timing attack. |
Family: | unix | Class: | vulnerability |
Status: | | Reference(s): | CVE-2003-0190
|
Platform(s): | Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 SUSE CORE 9 for AMD64 and Intel EM64T SUSE CORE 9 for IBM POWER SUSE CORE 9 for IBM S/390 31bit SUSE CORE 9 for IBM zSeries 64bit SUSE CORE 9 for Itanium Processor Family SUSE CORE 9 for x86
| Product(s): | |
Definition Synopsis |
Release Information sles9-nld is installed
AND openssh less than 3.8p1-37.17
OR Package Information
sles9-nld is installed
AND openssh less than 3.8p1-37.17
|