EUVD-2017-11017

Malware in sbrugna...

CVE-2017-20002

The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even if they are connected by non-physical means such as SSH hence bypassing PAM's nulloksecure configuration. Thi...

UBUNTU-CVE-2017-20002

The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even if they are connected by non-physical means such as SSH hence bypassing PAM's nulloksecure configuration. Thi...

shadow 安全漏洞

shadow is a suite of tools used to maintain Debian systems. A security vulnerability exists in the Debian shadow package before 4.5-1, which allows a local user to log in as a user without a password, allowing all local users to escalate privileges...

shadow lifting vulnerability

shadow is a suite of tools for maintaining Debian systems. A security vulnerability exists in shadow version 4.8. An attacker has exploited this vulnerability to gain root privileges...