Nessus Plugin #15211
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA374] DSA-374-1 libpam-smb
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2004 Michel Arboi
- Summary:
- DSA-374-1 libpam-smb
- Version:
- $Revision: 1.4 $
- Cve_id:
- CAN-2003-0686
- Bugtraq_id:
- 8491
- Xrefs:
- DSA:374
- Description:
libpam-smb is a PAM authentication module which makes it possible to
authenticate users against a password database managed by Samba or a
Microsoft Windows server. If a long password is supplied, this can
cause a buffer overflow which could be exploited to execute arbitrary
code with the privileges of the process which invokes PAM services.
For the stable distribution (woody) this problem has been fixed in
version 1.1.6-1.1woody1.
The unstable distribution (sid) does not contain a libpam-smb
package.
We recommend that you update your libpam-smb package.
Solution : http://www.debian.org/security/2003/dsa-374
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.