← back
CVE-2009-2482

CVE-2009-2482

EPSS 0.3%
The pam_unix module in OpenPAM in NetBSD 4.0 before 4.0.2 and 5.0 before 5.0.1 allows local users to change the current root password if it is already known, even when they are not in the wheel group.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-004.txt.aschttp://osvdb.org/55284http://secunia.com/advisories/35553https://exchange.xforce.ibmcloud.com/vulnerabilities/51312http://www.securityfocus.com/bid/35465http://www.securitytracker.com/id?1022432