qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages when an invalid username is provided instead of a valid name, which allows remote malicious users to determine valid usernames on the system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qualcomm qpopper 4.0.1 |