PT-2005-3531 · Red Hat+3 · Compat-Openldap+8

Luke Howard

Published

2005-08-21

Updated

2018-10-19

CVE-2005-2641

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Unknown vulnerability in pam ldap before 180 does not properly handle a new password policy control, which could allow attackers to gain privileges. NOTE: CVE-2005-2497 had also been assigned to this issue, but CVE-2005-2641 is the correct candidate.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2641

DSA-785-1

RHSA-2005:767

RHSA-2005_767

Affected Products

Compat-Openldap

Libpam-Ldap

Nss Ldap

Openldap

Openldap-Clients

Openldap-Devel

Openldap-Servers

Openldap-Servers-Sql

Pam Ldap

PT-2005-3531 · Red Hat+3 · Compat-Openldap+8

CVE-2005-2641

Related Identifiers

Affected Products

References · 17