The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2003-04-29T04:00:00
Updated: 2024-08-08T01:43:36.087Z
Reserved: 2003-03-28T00:00:00
Link: CVE-2003-0174
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2003-05-12T04:00:00.000
Modified: 2024-02-08T20:45:57.440
Link: CVE-2003-0174
Redhat
No data.