CVE-2009-2482
The vulnerability CVE-2009-2482 affects the pam_unix module in OpenPAM used by NetBSD 4.0 up to 4.0.2 and NetBSD 5.0 up to 5.0.1. The underlying issue allows a local user to change the current root password if it is already known, even when the user is not in the wheel group. This is a local-acce...