CVE-2005-0486

Name of the Vulnerable Software and Affected Versions Tarantella Secure Global Desktop Enterprise Edition versions 3.42 through 4.00 Tarantella Enterprise 3 versions 3.30 through 3.40

Description The issue reveals sensitive information during authentication when multiple users have the same username and RSA SecurID is used. This allows remote attackers to identify valid usernames and the authentication scheme.

Recommendations For Tarantella Secure Global Desktop Enterprise Edition versions 3.42 through 4.00, consider implementing unique usernames for all users to prevent information disclosure. For Tarantella Enterprise 3 versions 3.30 through 3.40, consider implementing unique usernames for all users to prevent information disclosure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.