VYPR
Unrated severityNVD Advisory· Published Apr 8, 2009· Updated Jun 16, 2026

CVE-2009-1273

CVE-2009-1273

Description

pam_ssh 1.92 and possibly other versions, as used when PAM is compiled with USE=ssh, generates different error messages depending on whether the username is valid or invalid, which makes it easier for remote attackers to enumerate usernames.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.