Windows User Enumeration for Time Restricted Accounts

Sid released an advisory about an interesting username enumeration vulnerability over the weekend: notsosecure.com

Username enumeration vulnerabilities are a classic mistake that vendors seem fated to repeat.  It’s surprising to see one in such a mature product, though.  Well spotted, Sid.


Leave a Reply