← back
CVE-2002-0374

CVE-2002-0374

EPSS 3.8%
Format string vulnerability in the logging function for the pam_ldap PAM LDAP module before version 144 allows attackers to execute arbitrary code via format strings in the configuration file name.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-041.0.txthttp://archives.neohapsis.com/archives/vulnwatch/2002-q2/0053.htmlhttp://marc.info/?l=bugtraq&m=103601912505261&w=2http://www.iss.net/security_center/static/9018.phphttp://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:075http://www.redhat.com/support/errata/RHSA-2002-084.htmlhttp://www.redhat.com/support/errata/RHSA-2002-141.htmlhttp://www.redhat.com/support/errata/RHSA-2002-175.htmlhttp://www.redhat.com/support/errata/RHSA-2002-180.htmlhttp://www.securityfocus.com/bid/4679