Tarantella Secure Global Desktop Enterprise Edition 4.00 and 3.42, and Tarantella Enterprise 3 3.40 and 3.30, when using RSA SecurID and multiple users have the same username, reveals sensitive information during authentication, which allows remote attackers to identify valid usernames and the authentication scheme.
References
Link | Resource |
---|---|
http://www.tarantella.com/security/bulletin-11.html | Patch Vendor Advisory URL Repurposed |
https://exchange.xforce.ibmcloud.com/vulnerabilities/19407 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-02-19T05:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2005-02-19T00:00:00
Link: CVE-2005-0486
JSON object: View
NVD Information
Status : Modified
Published: 2005-03-30T05:00:00.000
Modified: 2024-02-14T01:17:43.863
Link: CVE-2005-0486
JSON object: View
Redhat Information
No data.
CWE