Lucene search
K

7 matches found

BDU FSTEC
BDU FSTEC
added 2021/12/07 12:0 a.m.5 views

The vulnerability of the shadow account management tool is related to insecure management of privileges, allowing a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the shadow account management tool is related to the incorrect specification of pts/o and pts/1 as physical terminals in the /etc/securetty file. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service...

7.8CVSS7.1AI score0.00404EPSS
Exploits1References8Affected Software3
OSV
OSV
added 2021/03/17 6:15 a.m.23 views

CVE-2017-20002

The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even if they are connected by non-physical means such as SSH hence bypassing PAM's nulloksecure configuration. Thi...

7.8CVSS8.8AI score
Exploits0References3
OSV
OSV
added 2021/03/17 6:15 a.m.5 views

DEBIAN-CVE-2017-20002

The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even if they are connected by non-physical means such as SSH hence bypassing PAM's nulloksecure configuration. Thi...

7.8CVSS7.3AI score0.00404EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2021/03/17 6:15 a.m.27 views

CVE-2017-20002

The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even if they are connected by non-physical means such as SSH hence bypassing PAM's nulloksecure configuration. Thi...

7.8CVSS7.1AI score0.00404EPSS
Exploits1References4
Prion
Prion
added 2021/03/17 6:15 a.m.22 views

Default credentials

The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even if they are connected by non-physical means such as SSH hence bypassing PAM's nulloksecure configuration. Thi...

4.6CVSS7.5AI score0.00404EPSS
Exploits1References3Affected Software2
Debian CVE
Debian CVE
added 2021/03/17 6:0 a.m.46 views

CVE-2017-20002

The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even if they are connected by non-physical means such as SSH hence bypassing PAM's nulloksecure configuration. Thi...

7.8CVSS7.4AI score0.00404EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/03/16 12:0 a.m.31 views

Debian DLA-2596-1 : shadow security update

Several vulnerabilities were discovered in the shadow suite of login tools. An attacker may escalate privileges in specific configurations. CVE-2017-20002 Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. This allows local users to login as password-less users even...

9.8CVSS6.7AI score0.02659EPSS
Exploits1References5
Rows per page
Query Builder