Filtered by vendor Pam Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2005-2977 2 Pam, Redhat 2 Pam, Enterprise Linux 2024-11-21 N/A
The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unix_chkpwd, which does not log failed guesses or delay its responses.
CVE-2002-1227 1 Pam 1 Pam 2024-11-20 N/A
PAM 0.76 treats a disabled password as if it were an empty (null) password, which allows local and remote attackers to gain privileges as disabled users.
CVE-1999-0342 1 Pam 1 Pam 2024-11-20 N/A
Linux PAM modules allow local users to gain root access using temporary files.