Lucene search
K

4 matches found

Prion
Prion
added 2009/07/30 6:30 p.m.17 views

Design/Logic Flaw

The localhandlercallback function in server/responder/pam/pamLOCALdomain.c in sssd 0.4.1 does not properly handle blank-password accounts in the SSSD BE database, which allows context-dependent attackers to obtain access by sending the account's username, in conjunction with an arbitrary password...

7.5CVSS6.9AI score0.01979EPSS
Exploits2References6Affected Software1
Cvelist
Cvelist
added 2009/07/30 6:0 p.m.48 views

CVE-2009-2410

The localhandlercallback function in server/responder/pam/pamLOCALdomain.c in sssd 0.4.1 does not properly handle blank-password accounts in the SSSD BE database, which allows context-dependent attackers to obtain access by sending the account's username, in conjunction with an arbitrary password...

6.3AI score0.01979EPSS
Exploits2References6
Debian CVE
Debian CVE
added 2009/07/30 6:0 p.m.33 views

CVE-2009-2410

The localhandlercallback function in server/responder/pam/pamLOCALdomain.c in sssd 0.4.1 does not properly handle blank-password accounts in the SSSD BE database, which allows context-dependent attackers to obtain access by sending the account's username, in conjunction with an arbitrary password...

7.5CVSS5.2AI score0.01979EPSS
Exploits2
Fedora
Fedora
added 2009/07/29 9:32 p.m.35 views

[SECURITY] Fedora 11 Update: sssd-0.4.1-3.fc11

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy servic...

7.5CVSS6.7AI score0.01979EPSS
Exploits2
Rows per page
Query Builder