CVE-1999-1346

Name of the Vulnerable Software and Affected Versions: Red Hat Linux versions 6.1 and earlier

Description: The PAM configuration file for rlogin includes a less restrictive rule before a more restrictive one. This allows users to access the host via rlogin even if rlogin has been explicitly disabled using the /etc/nologin file.

Recommendations: For Red Hat Linux versions 6.1 and earlier, consider reconfiguring the PAM settings to prioritize more restrictive rules over less restrictive ones to prevent unauthorized access via rlogin. As a temporary workaround, restrict access to the rlogin service until the PAM configuration can be updated.