CVE-2004-0243 Information

Description

AIX 4.3.3 through AIX 5.1 when direct remote login is disabled displays a different message if the password is correct which allows remote attackers to guess the password via brute force methods.

Reference

http://archives.neohapsis.com/archives/bugtraq/2004-02/0313.html http://marc.info/?l=bugtraq&m=107583269206044&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15172