Lucene search
K

12 matches found

BDU FSTEC
BDU FSTEC
added 2025/03/13 12:0 a.m.6 views

Vulnerability of the pam_sm_authenticate() function in the Yubico PAM module, pam-u2f, which allows a intruder to elevate their privileges

The vulnerability of the pamsmauthenticate function in the Yubico PAM module, specifically in pam-u2f, is related to the return of an incorrect status code. Exploiting this vulnerability could allow attackers to increase their privileges...

7.8CVSS8AI score0.00397EPSS
Exploits0References3Affected Software2
Veracode
Veracode
added 2020/12/06 3:5 a.m.29 views

Privilege Escalation

libpam-sshauth is vulnerable to privilege escalation. The pamsmauthenticate function in pamsshauth.c allows a context-dependent attackers to bypass authentication or gain privileges via a system user account...

9.8CVSS8AI score0.01803EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2016/05/06 5:59 p.m.14 views

CVE-2016-4422

The pamsmauthenticate function in pamsshauth.c in libpam-sshauth might allow context-dependent attackers to bypass authentication or gain privileges via a system user account...

10CVSS9.6AI score0.01803EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/05/06 5:59 p.m.16 views

CVE-2016-4422

The pamsmauthenticate function in pamsshauth.c in libpam-sshauth might allow context-dependent attackers to bypass authentication or gain privileges via a system user account...

10CVSS7.2AI score0.01803EPSS
Exploits0References3
Prion
Prion
added 2016/05/06 5:59 p.m.13 views

Authentication flaw

The pamsmauthenticate function in pamsshauth.c in libpam-sshauth might allow context-dependent attackers to bypass authentication or gain privileges via a system user account...

10CVSS7.3AI score0.01803EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/05/06 5:0 p.m.16 views

CVE-2016-4422

The pamsmauthenticate function in pamsshauth.c in libpam-sshauth might allow context-dependent attackers to bypass authentication or gain privileges via a system user account...

9.6AI score0.01803EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2016/05/06 5:0 p.m.24 views

CVE-2016-4422

Removed by vendor...

10CVSS9.4AI score0.01803EPSS
Exploits0
CVE
CVE
added 2016/05/06 5:0 p.m.78 views

CVE-2016-4422

Summary: CVE-2016-4422 affects libpam-sshauth (pam_sshauth.c). A weakness in pam_sm_authenticate could allow a local attacker to bypass authentication or gain root privileges by abusing system users. Affected component: libpam-sshauth, specifically the pam_sshauth PAM module. Root cause / impact ...

10CVSS9.4AI score0.01803EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2008/06/03 2:32 p.m.11 views

Design/Logic Flaw

pamsmauthenticate in pampgsql.c in libpam-pgsql 0.6.3 does not properly consider operator precedence when evaluating the success of a pamgetpass function call, which allows local users to gain privileges via a SIGINT signal when this function is executing, as demonstrated by a CTRL-C sequence at ...

4.6CVSS7.1AI score0.00324EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2008/06/03 2:32 p.m.11 views

CVE-2008-2516

pamsmauthenticate in pampgsql.c in libpam-pgsql 0.6.3 does not properly consider operator precedence when evaluating the success of a pamgetpass function call, which allows local users to gain privileges via a SIGINT signal when this function is executing, as demonstrated by a CTRL-C sequence at ...

4.6CVSS6.6AI score0.00324EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2008/06/03 2:0 p.m.20 views

CVE-2008-2516

Removed by vendor...

4.6CVSS7AI score0.00324EPSS
Exploits0
Cvelist
Cvelist
added 2008/06/03 2:0 p.m.14 views

CVE-2008-2516

pamsmauthenticate in pampgsql.c in libpam-pgsql 0.6.3 does not properly consider operator precedence when evaluating the success of a pamgetpass function call, which allows local users to gain privileges via a SIGINT signal when this function is executing, as demonstrated by a CTRL-C sequence at ...

6.6AI score0.00324EPSS
Exploits0References7
Rows per page
Query Builder