Searching pam software vulnerabilities

Linuxconf on Red Hat Linux 6.0 and earlier does

PAM-based | Linuxconf | properly | shutdown | disable | command | service | earlier | denial | access | local | allow | cause | users | could | Linux | which | does | Red | Hat | not |

Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service.


qpopper 4.01 with PAM based authentication on R

qpopper |

qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages when an invalid username is provided instead of a valid name, which allows remote attackers to determine valid usernames on the system.


The default PAM files included with passwd in M

passwords | security | Mandrake | included | password | intended | support | default | result | passwd | level | lower | could | Linux | files | which | than | PAM | not | MD5 |

The default PAM files included with passwd in Mandrake Linux 8.1 do not support MD5 passwords, which could result in a lower level of password security than intended.


OpenSSH 2.9 and earlier does not initiate a Plu

Authentication | Pluggable | initiate | earlier | OpenSSH | Module | does | not |

OpenSSH 2.9 and earlier does not initiate a Pluggable Authentication Module (PAM) session if commands are executed with no pty, which allows local users to bypass resource limits (rlimits) set in pam.d.


Unknown vulnerability in pam_authz in the LDAP-

vulnerability | Integration | pam_authz | product | Unknown | LDAP-UX | HP-UX |

Unknown vulnerability in pam_authz in the LDAP-UX Integration product on HP-UX 11.00 and 11.11 allows remote attackers to execute r-commands with privileges of other users.


Buffer overflow in axspawn.c in Axspawn-pam bef

Axspawn-pam | attackers | arbitrary | overflow | axspawnc | execute | packets | remote | before | Buffer | allows | large | 021a | code | via |

Buffer overflow in axspawn.c in Axspawn-pam before 0.2.1a allows remote attackers to execute arbitrary code via large packets.


pam_wheel in Linux-PAM 0.78, with the trust opt

Linux-PAM | pam_wheel |

pam_wheel in Linux-PAM 0.78, with the trust option enabled and the use_uid option disabled, allows local users to spoof log entries and gain privileges by causing getlogin() to return a spoofed user name.


Buffer overflow in PAM SMB module (pam_smb) 1.1

overflow | module | Buffer | SMB | PAM |

Buffer overflow in PAM SMB module (pam_smb) 1.1.6 and earlier, when authenticating to a remote service, allows remote attackers to execute arbitrary code.


KDM in KDE 3.1.3 and earlier does not verify wh

KDE | KDM |

KDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.


Unknown vulnerability in the pam_filter mechani

vulnerability | pam_filter | mechanism | pam_ldap | version | Unknown | before |

Unknown vulnerability in the pam_filter mechanism in pam_ldap before version 162, when LDAP based authentication is being used, allows users to bypass host-based access restrictions and log onto the system.


The PAM conversation function in OpenSSH 3.7.1

conversation | function | OpenSSH | PAM |

The PAM conversation function in OpenSSH 3.7.1 and 3.7.1p1 interprets an array of structures as an array of pointers, which allows attackers to modify the stack and possibly gain privileges.


passwd 0.68 does not check the return code for

passwd |

passwd 0.68 does not check the return code for the pam_start function, which has unknown impact and attack vectors that may prevent "safe and proper operation" of PAM.


authpam.c in courier-authdaemon for Courier Mai

courier-authdaemon | authpamc | Courier | Server | Mail |

authpam.c in courier-authdaemon for Courier Mail Server 0.37.3 through 0.52.1, when using pam_tally, does not call the pam_acct_mgmt function to verify that access should be granted, which allows attackers to authenticate to the server using accounts that have been disabled.


hfaxd in HylaFAX 4.2.3, when PAM support is dis

HylaFAX | hfaxd |

hfaxd in HylaFAX 4.2.3, when PAM support is disabled, accepts arbitrary passwords, which allows remote attackers to gain privileges.


Double-free vulnerability in the authentication

authentication | vulnerability | Double-free | alteration | PAM-MySQL | before | token | code | 06x |

Double-free vulnerability in the authentication and authentication token alteration code in PAM-MySQL 0.6.x before 0.6.2 and 0.7.x before 0.7pre3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted passwords, which lead to a double-free of a pointer that was created by the pam_get_item function. NOTE: this issue only occurs in certain configurations in which there are multiple PAM modules, PAM-MySQL is not evaluated first, and there are no requisite modules before PAM-MySQL.


Stack-based buffer overflow in the pam_micasa P

authentication | Stack-based | unspecified | Enterprise | pam_micasa | attackers | arbitrary | overflow | Desktop | vectors | execute | remote | allows | Server | buffer | module | Novell | Linux | code | CASA | Open | PAM | via |

Stack-based buffer overflow in the pam_micasa PAM authentication module in CASA on Novell Linux Desktop 9 and Open Enterprise Server 1 allows remote attackers to execute arbitrary code via unspecified vectors.


Pedro Lineu Orso chetcpasswd 2.4.1 and earlier

chetcpasswd | Lineu | Pedro | Orso |

Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and updates user accounts via custom code that processes /etc/shadow and does not follow the PAM configuration, which might allow remote attackers to bypass intended restrictions implemented through PAM.


login in util-linux-2.12a skips pam_acct_mgmt a

util-linux-212a | authentication | pam_acct_mgmt | established | chauth_tok | enforced | intended | policies | Kerberos | skipped | session | krlogin | access | bypass | skips | would | login | users | which | might | allow | such | been | has |

login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.


pam_unix.so in Linux-PAM 0.99.7.0 allows contex

pam_unixso | Linux-PAM |

pam_unix.so in Linux-PAM 0.99.7.0 allows context-dependent attackers to log into accounts whose password hash, as stored in /etc/passwd or /etc/shadow, has only two characters.


The auth_via_key function in pam_ssh.c in pam_s

auth_via_key | pam_sshc | function | pam_ssh | before |

The auth_via_key function in pam_ssh.c in pam_ssh before 1.92, when the allow_blank_passphrase option is disabled, allows remote attackers to bypass authentication restrictions and use private encryption keys requiring a blank passphrase by entering a non-blank passphrase.


Software vulnerabilities results 1 to 20 of 50     
Page: 123