CVE-2000-0957

Name of the Vulnerable Software and Affected Versions pam mysql versions prior to 0.4.7

Description The issue concerns the pluggable authentication module for mysql (pam mysql) and its failure to properly cleanse user input when constructing SQL statements. This allows attackers to obtain plaintext passwords or hashes.

Recommendations For versions prior to 0.4.7, update to version 0.4.7 or later to resolve the issue.