MiracleLinux 4 : nss-pam-ldapd-0.7.5-18.1.AXS4 (AXSA:2013-140:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2013-140:01 advisory. The nss-pam-ldapd daemon, nslcd, uses a directory server to look up name service information users, groups, etc. on behalf of a lightweight nsswitch module...

CVE-2003-1125

Unknown vulnerability in ns-ldapd for Sun ONE Directory Server 4.16, 5.0, and 5.1 allows LDAP clients to cause a denial of service service halt...

EUVD-2003-1115

Malware in sbrugna...

EUVD-2011-0463

Malware in sbrugna...

EUVD-2019-9139

Malware in sbrugna...

CVE-2019-19521

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

RHSA-2013:0590 Red Hat Security Advisory: nss-pam-ldapd security update

Bulletin has no description...

SUSE CVE-2009-1073

nss-ldapd before 0.6.8 uses world-readable permissions for the /etc/nss-ldapd.conf file, which allows local users to obtain a cleartext password for the LDAP server by reading the bindpw field...

SUSE CVE-2013-0288

nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer...

nss-pam-ldapd bug fix and enhancement update

An update is available for nss-pam-ldapd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linu...

CVE-2019-19521

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

CVE-2019-19521

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

Authentication flaw

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

Qualys Security Advisory - OpenBSD Authentication Bypass / Privilege Escalation

Qualys Security Advisory Authentication vulnerabilities in OpenBSD ============================================================================== Contents ============================================================================== 1. CVE-2019-19521: Authentication bypass 1.1. Analysis 1.2. Cas...

CVE-2019-19521

CVE-2019-19521 affects OpenBSD 6.6 libc and enables authentication bypass via the -schallenge username, exploitable remotely in smtpd, ldapd, or radiusd. Root cause ties to libc code paths gen/auth_subr.c and gen/authenticate.c (also related login.c and xenocara/greeter/verify.c). OpenBSD patches...

Oracle: Security Advisory (ELSA-2013-0590)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability in the implementation of the select() and FD_SET() functions of the nss-pam-ldapd package allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the select and FDSET functions in the nss-pam-ldapd package lies in the overflow of the file descriptor. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause a denial-of-service attack...

Vulnerabilities in the Debian GNU/Linux operating system that allow a local attacker to compromise the confidentiality of protected information

The multiple vulnerabilities in the libnss-ldapd package of the Debian GNU/Linux operating system can be exploited, which may lead to a violation of the confidentiality of protected information. These vulnerabilities can be exploited by local malicious individuals...

openSUSE Security Update : nss-pam-ldapd (openSUSE-SU-2013:0522-2)

nss-pam-ldap was updated to fix a FDSET overflow, happening when more than 1024 filedescriptors are opened. CVE-2013-0288 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-240. The...

Oracle Linux 6 : nss-pam-ldapd (ELSA-2013-0590)

The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2013-0590 advisory. 0.7.5-18.1 - Apply upstream r1926 to resolve FDSET array index error - Resolves: rhbz915361 Tenable has extracted the preceding description block directly from...