Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0015HistoryJan 14, 2010 - 6:30 p.m.
CVE-2010-0015
2010-01-1418:30:00
Debian Security Bug Tracker
security-tracker.debian.org
9
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.023 Low
EPSS
Percentile
89.5%
nis/nss_nis/nis-pwd.c in the GNU C Library (aka glibc or libc6) 2.7 and Embedded GLIBC (EGLIBC) 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | glibc | < 2.10.2-4 | glibc_2.10.2-4_all.deb |
| Debian | 11 | all | glibc | < 2.10.2-4 | glibc_2.10.2-4_all.deb |
| Debian | 10 | all | glibc | < 2.10.2-4 | glibc_2.10.2-4_all.deb |
| Debian | 999 | all | glibc | < 2.10.2-4 | glibc_2.10.2-4_all.deb |
| Debian | 13 | all | glibc | < 2.10.2-4 | glibc_2.10.2-4_all.deb |
Related
securityvulns
securityvulns
[SECURITY] [DSA 1973-1] New glibc packages fix information disclosure
2010-01-20 00:00:00
glibc getpwname information leak
2010-01-20 00:00:00
[USN-1396-1] GNU C Library vulnerabilities
2012-03-10 00:00:00
debian
debian
[SECURITY] [DSA 1973-1] New glibc packages fix information disclosure
2010-01-19 22:32:45
prion
prion
Code injection
2010-01-14 18:30:00
nessus
nessus
Debian DSA-1973-1 : glibc, eglibc - information disclosure
2010-02-24 00:00:00
SuSE 11.1 Security Update : glibc (SAT Patch Number 4572)
2011-12-13 00:00:00
SuSE 11.1 Security Update : glibc (SAT Patch Number 4572)
2011-06-28 00:00:00
openvas
openvas
Debian Security Advisory DSA 1973-1 (glibc, eglibc)
2010-02-01 00:00:00
Debian: Security Advisory (DSA-1973-1)
2010-02-01 00:00:00
Mandriva Update for kdebase4-workspace MDVA-2010:112 (kdebase4-workspace)
2010-04-06 00:00:00
ubuntucve
ubuntucve
CVE-2010-0015
2010-01-14 00:00:00
osv
osv
glibc - information disclosure
2010-01-19 00:00:00
cve
cve
CVE-2010-0015
2010-01-14 18:30:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2012-03-09 00:00:00
suse
suse
local privilege escalation in glibc
2010-10-28 13:41:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.023 Low
EPSS
Percentile
89.5%
Related for DEBIANCVE:CVE-2010-0015