--- V:\d7win\drupal-7.0\modules\user\user.module
+++ V:\d7win\drupal7_root\modules\user\user.module
@@ -2081,6 +2081,12 @@
  * is set to the matching user ID.
  */
 function user_login_authenticate_validate($form, &$form_state) {
+  
+  // no additional validation of user credentials is needed when form_state['uid'] is set
+  // in a previous validation
+  if (!empty($form_state['uid'])) {
+    return;
+  }
   $password = trim($form_state['values']['pass']);
   if (!empty($form_state['values']['name']) && !empty($password)) {
     // Do not allow any login from the current user's IP if the limit has been