Vulnerability Database

308,377

Total vulnerabilities in the database

CVE-2003-0174

The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.

Published: May 12, 2003
Updated: Nov 9, 2025
CVE: CVE-2003-0174
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-346

Affected Software
References

Software	From	Fixed in
sgi / irix	-	6.5.19.x

ftp://patches.sgi.com/support/free/security/advisories/20030407-01-P
http://www.ciac.org/ciac/bulletins/n-084.shtml
http://www.securityfocus.com/bid/7442
https://exchange.xforce.ibmcloud.com/vulnerabilities/11860

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo