Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.21 views

Mandrake Linux Security Advisory : util-linux (MDKSA-2001:084)

Tarhon-Onu Victor found a problem in /bin/login's PAM implementation. It stored the value of a static pwent buffer across PAM calls, and when used with some PAM modules in non-default configurations ie. using pamlimits, it would overwrite the buffer and cause the user to get the credentials of...

7.2CVSS5.6AI score0.00434EPSS
Exploits0References1
CVE
CVE
added 2002/06/25 4:0 a.m.56 views

CVE-2001-1147

CVE-2001-1147 affects util-linux’s /bin/login PAM handling prior to version 2.11, where a static pwent buffer could be rewritten across PAM calls. In non-default configurations (notably with pam_limits), this could leak one user’s credentials to another. The advisories (Mandrake, Red Hat) documen...

7.2CVSS6.6AI score0.00434EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.20 views

CVE-2001-1147

The PAM implementation in /bin/login of the util-linux package before 2.11 causes a password entry to be rewritten across multiple PAM calls, which could provide the credentials of one user to a different user, when used in certain PAM modules such as pamlimits...

6.6AI score0.00434EPSS
Exploits0References7
NVD
NVD
added 2001/10/08 4:0 a.m.11 views

CVE-2001-1147

The PAM implementation in /bin/login of the util-linux package before 2.11 causes a password entry to be rewritten across multiple PAM calls, which could provide the credentials of one user to a different user, when used in certain PAM modules such as pamlimits...

7.2CVSS6.6AI score0.00434EPSS
Exploits0References7
Rows per page
Query Builder