Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies in which responses take longer for valid usernames than invalid ones, as demonstrated by sshtime. NOTE: as of 20061014, it appears that this issue is dependent on the use of manually-set passwords that causes delays when processing /etc/shadow due to an increased number of rounds.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenSSH-Portable '/etc/shadow'密码远程信息泄露漏洞
Vulnerability Description
OpenSSH portable 4.1 on SUSE Linux及可能的其他平台和版本,并可能在有限的配置下。远程攻击者通过计时差异确定有效的用户名(有效用户名比无效用户名的响应时间长),如通过sshtime所示。
CVSS Information
N/A
Vulnerability Type
N/A