nslcd/pam.c in the nss-pam-ldapd 0.8.0 PAM module returns a success code when a user is not found in LDAP, which allows remote malicious users to bypass authentication.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
arthurdejong nss-pam-ldapd 0.8.0 |