Описание
libpam-pgsql (aka pam_pgsql) 0.7 does not properly handle a NULL value returned by the password search query, which allows remote attackers to bypass authentication via a crafted password.
Ссылки
- ExploitPatch
- ExploitPatch
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:lucas_clemente_vella:libpam-pgsql:0.7:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00996
Низкий
5 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
ubuntu
больше 11 лет назад
libpam-pgsql (aka pam_pgsql) 0.7 does not properly handle a NULL value returned by the password search query, which allows remote attackers to bypass authentication via a crafted password.
debian
больше 11 лет назад
libpam-pgsql (aka pam_pgsql) 0.7 does not properly handle a NULL value ...
github
почти 4 года назад
libpam-pgsql (aka pam_pgsql) 0.7 does not properly handle a NULL value returned by the password search query, which allows remote attackers to bypass authentication via a crafted password.
EPSS
Процентиль: 76%
0.00996
Низкий
5 Medium
CVSS2
Дефекты
CWE-287