CVE-2009-1769

EPSS 0.55%

Published: 5/22/2009Modified: 4/28/2026

Also known as:DEBIAN-CVE-2009-1769

Description

The web interface in Open Computer and Software Inventory Next Generation (OCS Inventory NG) 1.01 generates different error messages depending on whether a username is valid, which allows remote attackers to enumerate valid usernames.

Affected packages (1)

Debian/ocsinventory-serverfrom 0, < 1.02.1-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-1769