exploitDog

CVE-2009-0579

Опубликовано: 07 фев. 2009

Источник: redhat

EPSS Низкий

Описание

Linux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner than specified.

Отчет

Not vulnerable. This issue did not affect the versions of pam as shipped with Red Hat Enterprise Linux 3, 4, 5, or 6.

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=487216pam: MINDAYS not respected by pam for password changing

EPSS

Процентиль: 19%

0.00062

Низкий

Связанные уязвимости

CVE-2009-0579

ubuntu

больше 16 лет назад

Linux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner than specified.

CVE-2009-0579

nvd

больше 16 лет назад

Linux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner than specified.

CVE-2009-0579

debian

больше 16 лет назад

Linux-PAM before 1.0.4 does not enforce the minimum password age (MIND ...

GHSA-hm9c-qrxw-gvc3

github

больше 3 лет назад

Linux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner than specified.

EPSS

Процентиль: 19%

0.00062

Низкий