CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2005-0003

Malware in sbrugna...

10CVSS6.3AI score0.02444EPSS

Exploits0References4

OpenVAS•added 2008/09/24 12:0 a.m.•16 views

Gentoo Security Advisory GLSA 200501-22 (poppassd_pam)

The remote host is missing updates announced in advisory GLSA 200501-22. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.02444EPSS

Exploits0References2

OpenVAS•added 2008/09/24 12:0 a.m.•22 views

Gentoo Security Advisory GLSA 200501-22 (poppassd_pam)

The remote host is missing updates announced in advisory GLSA 200501-22. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

10CVSS1AI score0.02444EPSS

Exploits0

NVD•added 2005/05/02 4:0 a.m.•19 views

CVE-2005-0002

poppassdpam 1.0 and earlier, when changing a user password, does not verify that the user entered the old password correctly, which allows remote attackers to change passwords for arbitrary users...

10CVSS6.9AI score0.02444EPSS

Exploits0References3

Tenable Nessus•added 2005/02/14 12:0 a.m.•25 views

GLSA-200501-22 : poppassd_pam: Unauthorized password changing

The remote host is affected by the vulnerability described in GLSA-200501-22 poppassdpam: Unauthorized password changing Gentoo Linux developer Marcus Hanwell discovered that poppassdpam did not check that the old password was valid before changing passwords. Our investigation revealed that...

10CVSS5.6AI score0.02444EPSS

Exploits0References2

CVE•added 2005/01/19 5:0 a.m.•57 views

CVE-2005-0002

The CVE-2005-0002 entry concerns poppassd_pam (versions 1.0 and earlier) where, when changing a user password, the old password is not verified correctly. The root cause is that poppassd_pam did not call pam_authenticate before pam_chauthtok, allowing a remote attacker to change passwords for arb...

10CVSS6.9AI score0.02444EPSS

Exploits0References3Affected Software1

Cvelist•added 2005/01/19 5:0 a.m.•22 views

CVE-2005-0002

poppassdpam 1.0 and earlier, when changing a user password, does not verify that the user entered the old password correctly, which allows remote attackers to change passwords for arbitrary users...

6.9AI score0.02444EPSS

Exploits0References3

securityvulns•added 2005/01/13 12:0 a.m.•28 views

poppassd_pam unauthorized password change

Old password is never checked before setting new one...

2AI score

Exploits0References1Affected Software1

securityvulns•added 2005/01/13 12:0 a.m.•43 views

[ GLSA 200501-22 ] poppassd_pam: Unauthorized password changing

Gentoo Linux Security Advisory GLSA 200501-22 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

10CVSS0.02444EPSS

Exploits0

Gentoo Linux•added 2005/01/11 12:0 a.m.•28 views

poppassd_pam: Unauthorized password changing

Background poppassdpam is a PAM-enabled server for changing system passwords that can be used to change POP server passwords. Description Gentoo Linux developer Marcus Hanwell discovered that poppassdpam did not check that the old password was valid before changing passwords. Our investigation...

10CVSS6.5AI score0.02444EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by