← CVECheck
HomeVulnerabilities

CVE-1999-1266 — MEDIUM severity vulnerability (rsh daemon (rshd) generates different error messages when a)

rsh daemon (rshd) generates different error messages when a valid username is provided versus an invalid name, which allows remote attackers to determine valid users on the system.

CVE IDCVE-1999-1266
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published1997-06-13
Last modified2026-04-16
Descriptionrsh daemon (rshd) generates different error messages when a valid username is provided versus an invalid name, which allows remote attackers to determine valid users on the system.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →