Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2641

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2641
Last Modified 21 Aug 2010 12:31:49
Published 23 Aug 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2641

Summary

Unknown vulnerability in pam_ldap before 180 does not properly handle a new password policy control, which could allow attackers to gain privileges. NOTE: CVE-2005-2497 had also been assigned to this issue, but CVE-2005-2641 is the correct candidate.

Vulnerable Systems

Application

  • Padl Software Pam Ldap Build 178


References

CERT-VN - VU#778916

MISC - https://www.redhat.com/archives/fedora-test-list/2005-August/msg00170.html

CONFIRM - https://issues.rpath.com/browse/RPL-680

BID - 14649

BUGTRAQ - 20061005 rPSA-2006-0183-1 nss_ldap

REDHAT - RHSA-2005:767

MANDRIVA - MDKSA-2005:190

SECUNIA - 17270

SECUNIA - 17233


Last Updated: 27 May 2016 10:40:35