Low: Red Hat Security Advisory: pam security update

An updated pam package that fixes a security weakness is now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. PAM Pluggable Authentication Modules is a system security tool that allows system administrators t...

PT-2003-1109 · Openssh +1 · Openssh-Portable +1

Name of the Vulnerable Software and Affected Versions: OpenSSH-portable versions 3.6.1p1 and earlier Description: The issue allows remote attackers to determine valid usernames via a timing attack when a user does not exist, due to the immediate sending of an error message with PAM support enable...

ldap vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --- Blackshell Advisory 5 --- Local Format String Vuln in pamldap and remote in squidauthldap - --- Blackshell Advisory 5 --- - --- Versions Affected --- pamldap: 143 prior vendor status: nil squidauthldap: 2.0 prior vendor status: nil - --- What is...

CVE-2001-1440

Unknown vulnerability in login for AIX 5.1L, when using loadable authentication modules, allows remote attackers to gain access to the system...

IBM AIX login fails to adequately authenticate user when configured to use loadable authentication modules

Overview There is a remotely exploitable flaw in IBM's AIX 5.1L login when using loadable authentication modules. This does not affect AIX 4.3 and earlier. Description IBM AIX 5.1L login, with loadable authentication modules enabled and some non-default configurations, will permit users to login...

RUS-CERT.apache.auth.txt

Vulnerabilities in several Apache authentication modules RUS-CERT has discovered that several Apache authentication modules which use SQL databases to store authentication information are vulnerable to a remote SQL code injection attack. Systems Affected Any Apache server using database-based...

(SRADV00002) Remote root compromise through pam_smb and pam_ntdom

================================================= Secure Reality Pty Ltd. Security Advisory 1 SRADV00002 http://www.securereality.com.au ================================================= Title Remote root compromise through pamsmb and pamntdom Released 11/09/2000 Vulnerable pamsmb - stable versio...

CVE-2000-0356

Pluggable Authentication Modules PAM in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts...

Sun Solaris 2.5.1 PAM / unix_scheme - 'passwd' Local Privilege Escalation

/ source: https://www.securityfocus.com/bid/201/info There is a buffer overflow condition on arguments in Pluggable Authentication Modules PAM and unixscheme 5.4 and 5.3. Therefore, an unauthorized user could exploit this vulnerability via the passwd program to gain root access. Under SunOS 5.5.1...