'CPE Based Vulnerabilities for OpenSSH CVE-2007-2768
The security checker shows the issue:
CPE Based Vulnerabilities for OpenSSH CVE-2007-2768
I need to fix this issue, but how? We are using Ubuntu 20.04 and OpenSSH server version 9.0.
Info about the CVE-2007-2768 Detail: OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.
Thank you.
Sources
This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.
Source: Stack Overflow
| Solution | Source |
|---|