CVE-2005-2977

Опубликовано: 01 нояб. 2005

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unix_chkpwd, which does not log failed guesses or delay its responses.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pam:pam:*:*:selinux:*:*:*:*:*

Версия до 0.80 (включая)

EPSS

Процентиль: 23%

0.00076

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2005-2977

ubuntu

почти 20 лет назад

The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unix_chkpwd, which does not log failed guesses or delay its responses.

CVE-2005-2977

redhat

почти 20 лет назад

The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unix_chkpwd, which does not log failed guesses or delay its responses.

CVE-2005-2977

debian

почти 20 лет назад

The SELinux version of PAM before 0.78 r3 allows local users to perfor ...

GHSA-9fch-jjp9-h24r

github

больше 3 лет назад

The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unix_chkpwd, which does not log failed guesses or delay its responses.

EPSS

Процентиль: 23%

0.00076

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other