FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Buffer overflow in pam_smb password handling

Affected packages
		pam_smb	<	1.9.9_3

Details

VuXML ID	2bcd2d24-24ca-11d8-82e5-0020ed76ef5a
Discovery	2003-10-25
Entry	2003-10-25
Modified	2003-10-25

Applications utilizing pam_smb can be compromised by any user who can enter a password. In many cases, this is a remote root compromise.

References

CVE Name	CVE-2003-0686
URL	http://www.skynet.ie/~airlied/pam_smb/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.