PT-1999-1409 · Slackware · Slackware
Published
1999-12-01
·
Updated
2022-08-17
·
CVE-1999-0856
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Slackware version 7.0
Description
The issue allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist.
Recommendations
For Slackware version 7.0, update to a newer version that contains a fix for this issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Slackware