CVE-2005-2641
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
23/08/2005
Last modified:
03/04/2025
Description
Unknown vulnerability in pam_ldap before 180 does not properly handle a new password policy control, which could allow attackers to gain privileges. NOTE: CVE-2005-2497 had also been assigned to this issue, but CVE-2005-2641 is the correct candidate.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:padl_software:pam_ldap:*:*:*:*:*:*:*:* | build_178 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/17233
- http://secunia.com/advisories/17270
- http://www.kb.cert.org/vuls/id/778916
- http://www.mandriva.com/security/advisories?name=MDKSA-2005%3A190
- http://www.redhat.com/support/errata/RHSA-2005-767.html
- http://www.securityfocus.com/archive/1/447859/100/200/threaded
- http://www.securityfocus.com/bid/14649
- https://issues.rpath.com/browse/RPL-680
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10370
- https://www.redhat.com/archives/fedora-test-list/2005-August/msg00170.html
- http://secunia.com/advisories/17233
- http://secunia.com/advisories/17270
- http://www.kb.cert.org/vuls/id/778916
- http://www.mandriva.com/security/advisories?name=MDKSA-2005%3A190
- http://www.redhat.com/support/errata/RHSA-2005-767.html
- http://www.securityfocus.com/archive/1/447859/100/200/threaded
- http://www.securityfocus.com/bid/14649
- https://issues.rpath.com/browse/RPL-680
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10370
- https://www.redhat.com/archives/fedora-test-list/2005-August/msg00170.html