Lucene search
GoogleOSV:DLA-191-1HistoryApr 09, 2015 - 12:00 a.m.
checkpw - security update
2015-04-0900:00:00
Google
osv.dev
4
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Hiroya Ito of GMO Pepabo, Inc. reported that checkpw, a password
authentication program, has a flaw in processing account names which
contain double dashes. A remote attacker can use this flaw to cause a
denial of service (infinite loop).
Thanks to Markus Koschany who prepared the Debian package.
References
Related
prion
prion
Code injection
2015-02-28 02:59:00
nessus
nessus
Debian DLA-191-1 : checkpw security update
2015-04-10 00:00:00
Debian DSA-3192-1 : checkpw - security update
2015-03-17 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3192-1] checkpw security update
2015-03-18 00:00:00
checkpw DoS
2015-03-18 00:00:00
debiancve
debiancve
CVE-2015-0885
2015-02-28 02:59:00
debian
debian
[SECURITY] [DLA 191-1] checkpw security update
2015-04-09 11:04:26
[SECURITY] [DSA 3192-1] checkpw security update
2015-03-17 06:16:53
[SECURITY] [DSA 3192-1] checkpw security update
2015-03-17 06:16:53
ubuntucve
ubuntucve
CVE-2015-0885
2015-02-28 00:00:00
jvn
jvn
JVN#34790526: checkpw vulnerable to denial-of-service (DoS)
2015-02-27 00:00:00
cve
cve
CVE-2015-0885
2015-02-28 02:59:00
openvas
openvas
Debian: Security Advisory (DLA-191-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3192-1 (checkpw - security update)
2015-03-17 00:00:00
Debian: Security Advisory (DSA-3192-1)
2015-03-16 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-12-06 04:35:02
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related for OSV:DLA-191-1