CVE-2005-2949

Name of the Vulnerable Software and Affected Versions pam per user versions prior to 0.4

Description The issue allows remote attackers or local users to login as other users by using certain applications that allow the username to be changed during authentication. This can be achieved with applications such as /bin/login.

Recommendations For versions prior to 0.4, update to version 0.4 or later to resolve the issue. As a temporary workaround, consider restricting the use of applications that allow username changes during authentication, such as /bin/login, until the update is applied.