Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-0599HistoryFeb 13, 2006 - 11:06 a.m.
CVE-2006-0599
2006-02-1311:06:00
Debian Security Bug Tracker
security-tracker.debian.org
9
0.014 Low
EPSS
Percentile
86.4%
The (1) elog.c and (2) elogd.c components in elog before 2.5.7 r1558-4 generate different responses depending on whether or not a username is valid, which allows remote attackers to determine valid usernames.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | elog | < 3.1.3-1-1 | elog_3.1.3-1-1_all.deb |
Related
prion
prion
Code injection
2006-02-13 11:06:00
nvd
nvd
CVE-2006-0599
2006-02-13 11:06:00
cvelist
cvelist
CVE-2006-0599
2006-02-13 11:00:00
cve
cve
CVE-2006-0599
2006-02-13 11:06:00
openvas
openvas
Debian: Security Advisory (DSA-967-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 967-1 (elog)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-967-1 : elog - several vulnerabilities
2006-10-14 00:00:00
osv
osv
elog - several
2006-02-10 00:00:00
debian
debian
[SECURITY] [DSA 967-1] New elog packages fix arbitrary code execution
2006-02-10 06:04:26
[SECURITY] [DSA 967-1] New elog packages fix arbitrary code execution
2006-02-10 06:04:26