Username Enumeration Vulnerability in ugidd RPC Interface

Username Enumeration Vulnerability in ugidd RPC Interface

CVE-1999-0656 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names.

Learn more about our User Device Pen Test.