QwikSec

Security Database

CVE

CWE

Training

CVE-2005-4713

Published: Feb 13, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Unspecified vulnerability in the SQL logging facility in PAM-MySQL 0.6.x before 0.6.2 and 0.7.x before 0.7pre3 allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors, probably involving the pam_mysql_sql_log function when being used in vsftpd, which does not include the IP address argument to an sprintf call.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_VUPEN

http://sourceforge.net/tracker/index.php?func=detail&aid=1256243&group_id=5741&atid=305741

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

http://sourceforge.net/forum/forum.php?forum_id=499394

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.