Unrated severityNVD Advisory· Published Dec 21, 2006· Updated Jun 16, 2026
CVE-2006-6682
CVE-2006-6682
Description
Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error message when a request with a valid username fails, compared to a request with an invalid username, which allows remote attackers to determine valid usernames on the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:chetcpasswd_project:chetcpasswd:2.3.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:chetcpasswd_project:chetcpasswd:2.3.3:*:*:*:*:*:*:*
- (no CPE)range: =2.3.3
Patches
Vulnerability mechanics
References
6- bugs.debian.org/cgi-bin/bugreport.cginvdThird Party Advisory
- secunia.com/advisories/22967nvdPermissions RequiredThird Party Advisory
- www.osvdb.org/30545nvdBroken LinkPermissions RequiredThird Party Advisory
- www.securityfocus.com/bid/21102nvdThird Party AdvisoryVDB Entry
- marc.infonvdMailing List
- exchange.xforce.ibmcloud.com/vulnerabilities/30454nvdVDB Entry
News mentions
0No linked articles in our index yet.