Lucene search
K

431 matches found

NVD
NVD
added 2001/07/20 4:0 a.m.13 views

CVE-2001-1354

NetWin Authentication module NWAuth 2.0 and 3.0b, as implemented in SurgeFTP, DMail, and possibly other packages, uses weak password hashing, which could allow local users to decrypt passwords or use a different password that has the same hash value as the correct password...

4.6CVSS6.6AI score0.00778EPSS
Exploits1References3
exploitpack
exploitpack
added 2001/07/20 12:0 a.m.20 views

NetWin DMail 2.x SurgeFTP 1.02.0 - Weak Password Encryption

NetWin DMail 2.x SurgeFTP 1.02.0 - Weak Password Encryption // source: https://www.securityfocus.com/bid/3075/info The Netwin Authentication module, or NWAuth, is an external authentication module used by several Netwin products. A simple one-way hash function is used by NWAuth to perform passwor...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2001/07/20 12:0 a.m.17 views

NetWin DMail 2.x / SurgeFTP 1.0/2.0 - Weak Password Encryption

// source: https://www.securityfocus.com/bid/3075/info The Netwin Authentication module, or NWAuth, is an external authentication module used by several Netwin products. A simple one-way hash function is used by NWAuth to perform password encryption operations. As a result, it is trivial for an...

7.4AI score
Exploits0
Snyk
Snyk
added 2001/06/19 4:0 a.m.2 views

Access Restriction Bypass

Overview Affected versions of this package are vulnerable to Access Restriction Bypass. OpenSSH 2.9 and earlier does not initiate a Pluggable Authentication Module PAM session if commands are executed with no pty, which allows local users to bypass resource limits rlimits set in pam.d. Remediatio...

7.5CVSS6.7AI score0.02158EPSS
Exploits0References2
OSV
OSV
added 2001/06/19 4:0 a.m.4 views

DEBIAN-CVE-2001-1459

OpenSSH 2.9 and earlier does not initiate a Pluggable Authentication Module PAM session if commands are executed with no pty, which allows local users to bypass resource limits rlimits set in pam.d...

7.5CVSS6.7AI score0.02158EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2001/06/19 12:0 a.m.12 views

PT-2001-2550 · Openssh +1 · Openssh +1

Name of the Vulnerable Software and Affected Versions: OpenSSH versions 2.9 and earlier Description: The issue allows local users to bypass resource limits rlimits set in pam.d because OpenSSH does not initiate a Pluggable Authentication Module PAM session when commands are executed with no pty...

10CVSS7.9AI score0.99506EPSS
Exploits207References338
CVE
CVE
added 2001/01/22 5:0 a.m.36 views

CVE-2000-0957

The pam_mysql pluggable authentication module for MySQL (pam_mysql) before 0.4.7 is vulnerable due to insufficient cleansing of user input when constructing SQL statements. This can allow an attacker to obtain plaintext passwords or password hashes. The provided documents do not include exploitat...

7.5CVSS7.7AI score0.01209EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.18 views

CVE-2000-0957

The pluggable authentication module for mysql pammysql before 0.4.7 does not properly cleanse user input when constructing SQL statements, which allows attackers to obtain plaintext passwords or hashes...

7.2AI score0.01209EPSS
Exploits0References2
NVD
NVD
added 2000/12/19 5:0 a.m.9 views

CVE-2000-0957

The pluggable authentication module for mysql pammysql before 0.4.7 does not properly cleanse user input when constructing SQL statements, which allows attackers to obtain plaintext passwords or hashes...

7.5CVSS7.2AI score0.01209EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2000/09/16 12:0 a.m.64 views

pam_smb / pam_ntdom User Name Remote Overflow

The remote telnet server shuts the connection abruptly when given a long username followed by a password. Although Nessus could not be 100% positive, it may mean that the remote host is using an older pamsmb or pamntdom pluggable authentication module to validate user credentials against a NT...

10CVSS6.4AI score0.06542EPSS
Exploits0References1
NVD
NVD
added 1997/05/13 4:0 a.m.16 views

CVE-1999-1158

Buffer overflow in 1 pluggable authentication module PAM on Solaris 2.5.1 and 2.5 and 2 unixscheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd...

7.2CVSS0.00837EPSS
Exploits0References2
Rows per page
Query Builder