Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1369

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1369
Last Modified 10 Sep 2008 03:10:23
Published 10 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1369

Summary

Leon J Breedt pam-pgsql before 0.5.2 allows remote attackers to execute arbitrary SQL code and bypass authentication or modify user account records by injecting SQL statements into user or password fields.

Vulnerable Systems

Application

  • Leon J Breedt Pam-pgsql 0.5.1

  • Leon J Breedt Pam-pgsql 0.5.2


References

XF - postgresql-pam-authentication-module(7110)

BID - 3319

FREEBSD - FreeBSD-SA-02:14


Last Updated: 27 May 2016 10:36:38