CVE-2005-3532

2005-12-11T01:03:00
ID CVE-2005-3532
Type cve
Reporter cve@mitre.org
Modified 2018-10-03T21:32:00

Description

authpam.c in courier-authdaemon for Courier Mail Server 0.37.3 through 0.52.1, when using pam_tally, does not call the pam_acct_mgmt function to verify that access should be granted, which allows attackers to authenticate to the server using accounts that have been disabled.