The pam_unix module in OpenPAM in NetBSD 4.0 prior to 4.0.2 and 5.0 prior to 5.0.1 allows local users to change the current root password if it is already known, even when they are not in the wheel group.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netbsd netbsd 4.0.1 |
||
netbsd netbsd 4.0 |
||
netbsd netbsd 5.0 |
||
netbsd netbsd 4.1 |