2 matches found
CVE-1999-1231
CVE-1999-1231 affects SSH 2.0.12 (and possibly later versions). The vulnerability arises because an attacker can try multiple password attempts using valid usernames, yet the system only prompts “invalid user” once, enabling remote disclosure of valid account names on the server. The description ...
CVE-1999-1231
ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on the server...