528 matches found
DEBIAN-CVE-2002-1227
PAM 0.76 treats a disabled password as if it were an empty null password, which allows local and remote attackers to gain privileges as disabled users...
PT-2001-2550 · Openssh +1 · Openssh +1
Name of the Vulnerable Software and Affected Versions: OpenSSH versions 2.9 and earlier Description: The issue allows local users to bypass resource limits rlimits set in pam.d because OpenSSH does not initiate a Pluggable Authentication Module PAM session when commands are executed with no pty...
CVE-2000-0957
The pluggable authentication module for mysql pammysql before 0.4.7 does not properly cleanse user input when constructing SQL statements, which allows attackers to obtain plaintext passwords or hashes...
CVE-2000-0957
The pluggable authentication module for mysql pammysql before 0.4.7 does not properly cleanse user input when constructing SQL statements, which allows attackers to obtain plaintext passwords or hashes...
(SRADV00002) Remote root compromise through pam_smb and pam_ntdom
================================================= Secure Reality Pty Ltd. Security Advisory 1 SRADV00002 http://www.securereality.com.au ================================================= Title Remote root compromise through pamsmb and pamntdom Released 11/09/2000 Vulnerable pamsmb - stable versio...
CVE-2000-0356
Pluggable Authentication Modules PAM in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts...
CVE-1999-1158
Buffer overflow in 1 pluggable authentication module PAM on Solaris 2.5.1 and 2.5 and 2 unixscheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd...
Sun Solaris 2.5.1 PAM / unix_scheme - 'passwd' Local Privilege Escalation
/ source: https://www.securityfocus.com/bid/201/info There is a buffer overflow condition on arguments in Pluggable Authentication Modules PAM and unixscheme 5.4 and 5.3. Therefore, an unauthorized user could exploit this vulnerability via the passwd program to gain root access. Under SunOS 5.5.1...