CVE-2002-0374

Name of the Vulnerable Software and Affected Versions pam ldap PAM LDAP module versions prior to 144 authconfig version 4.1.19.2

Description The issue concerns a format string vulnerability in the logging function of the pam ldap PAM LDAP module. This vulnerability allows attackers to execute arbitrary code via format strings in the configuration file name. Additionally, there is a vulnerability in the authconfig package of Red Hat Linux, which can lead to a breach of confidentiality, integrity, and availability of protected information. This vulnerability can be exploited remotely.

Recommendations For pam ldap PAM LDAP module versions prior to 144, update to version 144 or later to resolve the issue. For authconfig version 4.1.19.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.