CVE-2000-0938 Information

Description

Samba Web Administration Tool (SWAT) in Samba 2.0.7 supplies a different error message when a valid username is provided versus an invalid name which allows remote attackers to identify valid users on the server.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5442