pam-pgsql Input Validation Flaws in Authentication Data Let Remote Users Inject SQL Commands
|
|
SecurityTracker Alert ID: 1009584
|
|
CVE Reference: CAN-2004-0366
(Links to External Site)
|
Date: Mar 29 2004
|
Impact: Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network
|
Version(s): 0.5.2-5
|
Description: An input validation vulnerability was reported in pam-pgsql. A remote user may be able to inject SQL commands to be executed on the underlying database.
Debian reported that the libpam-psql PAM module used to authenticate via a PostgreSQL database does not properly validate user-supplied
input in certain variables. A remote user may be able to inject SQL statements to be executed by the underlying database.
The
flaws reportedly reside in the auth_verify_password() and pam_sm_chauthtok() functions in the 'pam_pgsql.c' file.
Primoz Bratanic
is credited with discovery.
|
Impact: A remote user can inject SQL commands to be executed on the underlying database. The specific impact depends on the application using the pam-pgsql library.
|
Solution: No upstream solution was available at the time of this entry.
|
Vendor URL: sourceforge.net/projects/pam-pgsql (Links to External Site)
|
Cause: Input validation error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Mon, 29 Mar 2004 09:21:30 -0500
Subject: CAN-2004-0366
|
CVE: CAN-2004-0366
Debian reported that there is a vulnerability in the libpam-psql PAM module used to
authenticated via a PostgreSQL database. A remote user can inject SQL statements to be
executed by the underlying database.
Primoz Bratanic is credited with discovery.
|
|
