SQL Injection Flaw in libpam-pgsql Affects Debian Systems
CVE-2004-0366

Currently unrated

Key Information:

Vendor: Leon J Breedt
Status: Pam-pgsql
Vendor: CVE Published:; 4 May 2004

🔔 Create Leon J Breedt Vulnerability Alert

What is CVE-2004-0366?

The libpam-pgsql library before version 0.5.2 is prone to an SQL injection vulnerability that can be exploited by attackers to execute arbitrary SQL commands. This may allow unauthorized access to sensitive data and compromise the security of affected Debian systems. It is crucial for users and administrators to apply the necessary updates to mitigate this risk.

References

http://www.securityfocus.com/bid/10266

vdb-entryx_refsource_BID

http://secunia.com/advisories/11237

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/15651

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 4, 2004
Vulnerability Reserved
Mar 22, 2004

CVE-2004-0366 Data

JSON