Pam Ssh · Pam Ssh · CVE-2009-1273
**Name of the Vulnerable Software and Affected Versions**
pam ssh version 1.92
**Description**
The issue allows remote attackers to enumerate usernames more easily due to different error messages generated for valid and invalid usernames.
**Recommendations**
For pam ssh version 1.92, consider modifying the error message handling to prevent disclosure of username validity as a temporary workaround until a patch is available.