Pam-PGSQL Username Logging Remote Format String Vulnerability

Bugtraq ID: 8379
Class: Input Validation Error
CVE: CVE-2003-0672
Remote: Yes
Local: No
Published: Aug 09 2003 12:00AM
Updated: Jul 11 2009 10:56PM
Credit: Discovery of this vulnerability has been credited to Florian Zumbiehl.
Vulnerable: Leon J Breedt pam-pgsql 0.5.2
+ Debian Linux 3.0 sparc
+ Debian Linux 3.0 s/390
+ Debian Linux 3.0 s/390
+ Debian Linux 3.0 ppc
+ Debian Linux 3.0 ppc
+ Debian Linux 3.0 mipsel
+ Debian Linux 3.0 mipsel
+ Debian Linux 3.0 mips
+ Debian Linux 3.0 mips
+ Debian Linux 3.0 m68k
+ Debian Linux 3.0 m68k
+ Debian Linux 3.0 ia-64
+ Debian Linux 3.0 ia-64
+ Debian Linux 3.0 ia-32
+ Debian Linux 3.0 ia-32
+ Debian Linux 3.0 hppa
+ Debian Linux 3.0 hppa
+ Debian Linux 3.0 arm
+ Debian Linux 3.0 arm
+ Debian Linux 3.0 alpha
+ Debian Linux 3.0 alpha
- PostgreSQL PostgreSQL 6.5.3
- PostgreSQL PostgreSQL 6.5.3
- PostgreSQL PostgreSQL 6.3.2
- PostgreSQL PostgreSQL 6.3.2
Leon J Breedt pam-pgsql 0.5.1
- FreeBSD FreeBSD 4.4
- PostgreSQL PostgreSQL 6.5.3
- PostgreSQL PostgreSQL 6.5.3
- PostgreSQL PostgreSQL 6.3.2
- PostgreSQL PostgreSQL 6.3.2
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus