poppassd_pam 1.0 and previous versions, when changing a user password, does not verify that the user entered the old password correctly, which allows remote malicious users to change passwords for arbitrary users.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gentoo poppassd pam |