CVE-2002-1227

CVE-2002-1227

EPSS 2.4%

PAM 0.76 treats a disabled password as if it were an empty (null) password, which allows local and remote attackers to gain privileges as disabled users.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://www.debian.org/security/2002/dsa-177 http://www.iss.net/security_center/static/10405.php http://www.securityfocus.com/bid/5994