Back to search
CVE-2003-0174
Published: Apr 29, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
7442
vdb-entry
x_refsource_BID
irix-ldap-authentication-bypass(11860)
vdb-entry
x_refsource_XF
N-084
third-party-advisory
government-resource
x_refsource_CIAC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now