FreeBSD -- Incorrect error handling in PAM policy parser

Problem Description: The OpenPAM library searches for policy definitions in several locations. While doing so, the absence of a policy file is a soft failure handled by searching in the next location while the presence of an invalid file is a hard failure handled by returning an error to the...

FreeBSD Ports: FreeBSD

The remote host is missing an update to the system as announced in the referenced advisory. VID e51d5b1a-4638-11e1-9f47-00e0815b8da8 OpenVAS Vulnerability Test $ Description: Auto generated from VID e51d5b1a-4638-11e1-9f47-00e0815b8da8 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

FreeBSD Ports: FreeBSD

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD : FreeBSD -- pam_ssh() does not validate service names (e51d5b1a-4638-11e1-9f47-00e0815b8da8)

Some third-party applications, including KDE's kcheckpass command, allow the user to specify the name of the policy on the command line. Since OpenPAM treats the policy name as a path relative to /etc/pam.d or /usr/local/etc/pam.d, users who are permitted to run such an application can craft thei...

FreeBSD -- pam_ssh() does not validate service names

Problem Description: Some third-party applications, including KDE's kcheckpass command, allow the user to specify the name of the policy on the command line. Since OpenPAM treats the policy name as a path relative to /etc/pam.d or /usr/local/etc/pam.d, users who are permitted to run such an...

CVE-2011-4122

Directory traversal vulnerability in openpamconfigure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. dot dot in the servicename argument to the pamstart function, as demonstrated by a .. in the -c option to kcheckpass...

Directory traversal

Directory traversal vulnerability in openpamconfigure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. dot dot in the servicename argument to the pamstart function, as demonstrated by a .. in the -c option to kcheckpass...

CVE-2011-4122

Directory traversal vulnerability in openpamconfigure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. dot dot in the servicename argument to the pamstart function, as demonstrated by a .. in the -c option to kcheckpass...

CVE-2011-4122

CVE-2011-4122 is a directory-traversal vulnerability in the OpenPAM library used by FreeBSD (OpenPAM

OpenPAM - pam_start() Local Privilege Escalation

OpenPAM - pamstart Local Privilege Escalation source: https://www.securityfocus.com/bid/50607/info OpenPAM is prone to a local privilege-escalation vulnerability. Local attackers may exploit this issue to execute arbitrary code with superuser privileges. Successfully exploiting this issue will...

OpenPAM - 'pam_start()' Local Privilege Escalation

source: https://www.securityfocus.com/bid/50607/info OpenPAM is prone to a local privilege-escalation vulnerability. Local attackers may exploit this issue to execute arbitrary code with superuser privileges. Successfully exploiting this issue will result in the complete compromise of affected...

OpenSSH With OpenPAM DoS

According to its banner, the version of OpenSSH running on the remote host is affected by a remote denial of service vulnerability. When used with OpenPAM, OpenSSH does not properly handle when a forked child process ends during PAM authentication. This could allow a remote attacker to cause a...

pam_captcha username harvest vulnerability

pamcaptcha is visual text-based CAPTCHA challenge module for PAM that uses figlet to generate the CAPTCHAs. Project site: http://www.semicomplete.com/projects/pamcaptcha/ A site with a screen shot: http://www.michaelboman.org/how-to/securing-ssh-access-with-pam-captcha I found a security problem...

Design/Logic Flaw

The pamunix module in OpenPAM in NetBSD 4.0 before 4.0.2 and 5.0 before 5.0.1 allows local users to change the current root password if it is already known, even when they are not in the wheel group...

CVE-2009-2482

The pamunix module in OpenPAM in NetBSD 4.0 before 4.0.2 and 5.0 before 5.0.1 allows local users to change the current root password if it is already known, even when they are not in the wheel group...

CVE-2009-2482

The pamunix module in OpenPAM in NetBSD 4.0 before 4.0.2 and 5.0 before 5.0.1 allows local users to change the current root password if it is already known, even when they are not in the wheel group...

CVE-2009-2482

The vulnerability CVE-2009-2482 affects the pam_unix module in OpenPAM used by NetBSD 4.0 up to 4.0.2 and NetBSD 5.0 up to 5.0.1. The underlying issue allows a local user to change the current root password if it is already known, even when the user is not in the wheel group. This is a local-acce...

Code injection

OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of service client connection refusal by connecting multiple times to the SSH server, waiting for the...

CVE-2006-0883

OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of service client connection refusal by connecting multiple times to the SSH server, waiting for the...

CVE-2006-0883

OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of service client connection refusal by connecting multiple times to the SSH server, waiting for the...