Описание
Format string vulnerability in the logging function for the pam_ldap PAM LDAP module before version 144 allows attackers to execute arbitrary code via format strings in the configuration file name.
Format string vulnerability in the logging function for the pam_ldap PAM LDAP module before version 144 allows attackers to execute arbitrary code via format strings in the configuration file name.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2002-0374
- http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0053.html
- http://marc.info/?l=bugtraq&m=103601912505261&w=2
- http://www.iss.net/security_center/static/9018.php
- http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:075
- http://www.redhat.com/support/errata/RHSA-2002-084.html
- http://www.redhat.com/support/errata/RHSA-2002-141.html
- http://www.redhat.com/support/errata/RHSA-2002-175.html
- http://www.redhat.com/support/errata/RHSA-2002-180.html
- http://www.securityfocus.com/bid/4679
EPSS
CVE ID
Связанные уязвимости
Format string vulnerability in the logging function for the pam_ldap PAM LDAP module before version 144 allows attackers to execute arbitrary code via format strings in the configuration file name.
Format string vulnerability in the logging function for the pam_ldap PAM LDAP module before version 144 allows attackers to execute arbitrary code via format strings in the configuration file name.
Уязвимость операционной системы Red Hat Linux, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS