CVE-2001-1483

NameCVE-2001-1483
DescriptionOne-Time Passwords In Everything (a.k.a OPIE) 2.32 and 2.4 allows remote attackers to determine the existence of user accounts by printing random passphrases if the user account does not exist and static passphrases if the user account does exist.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs112279

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
libpam-opiesource(unstable)(unfixed)unimportant112279

Notes

This is documented and not really important. In contrast to passwords
used by humans
[sarge] - libpam-opie <no-dsa> (Documented shortcoming, minor impact)
Search for package or bug name: Reporting problems