The LDAP name service (nsd) in IRIX 6.5.19 and previous versions does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow malicious users to log in without a password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sgi irix |