CVE-2000-0843

Buffer overflow in pam_smb and pam_ntdom pluggable authentication modules (PAM) allow remote attackers to execute arbitrary commands via a login with a long user name.

Published: Nov 14, 2000
Updated: Apr 13, 2023
CVE: CVE-2000-0843
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
dave_airlie / pam_smb	1.1.5	1.1.5.x
luke_kenneth_casson_leighton / pam_ntdom	0.23	0.23.x

http://archives.neohapsis.com/archives/bugtraq/2000-09/0073.html
http://archives.neohapsis.com/archives/bugtraq/2000-09/0114.html
http://www.debian.org/security/2000/20000911
http://www.linux-mandrake.com/en/security/MDKSA-2000-047.php3
http://www.novell.com/linux/security/advisories/adv8_draht_pam_smb_txt.html
http://www.securityfocus.com/bid/1666

Vulnerability Database

CVE-2000-0843

Deep Security Visibility Without the Complexity