CVE-2004-0243

AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.

Date published : 2004-03-18

http://marc.info/?l=bugtraq&m=107583269206044&w=2

http://archives.neohapsis.com/archives/bugtraq/2004-02/0313.html