Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0843

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2000-0843
Last Modified 05 Sep 2008 04:22:00
Published 14 Nov 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0843

Summary

Buffer overflow in pam_smb and pam_ntdom pluggable authentication modules (PAM) allow remote attackers to execute arbitrary commands via a login with a long user name.

Vulnerable Systems

Application

  • Dave Airlie Pam Smb 1.1.5

  • Luke Kenneth Casson Leighton Pam Ntdom 0.23


References

BID - 1666

DEBIAN - 20000911 libpam-smb: remote root exploit

SUSE - 20000913 pam_smb remotely exploitable buffer overflow

MANDRAKE - MDKSA-2000:047

BUGTRAQ - 20000911 Conectiva Linux Security Announcement - pam_smb

BUGTRAQ - 20000910 (SRADV00002) Remote root compromise through pam_smb and pam_ntdom


Last Updated: 27 May 2016 10:35:54