Back to search
CVE-2008-0003
Published: Jan 8, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback function in OpenPegasus CIM management server (tog-pegasus), when compiled to use PAM and without PEGASUS_USE_PAM_STANDALONE_PROC defined, might allow remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2007-5360.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openpegasus-pambasic-bo(39527)
vdb-entry
x_refsource_XF
40082
vdb-entry
x_refsource_OSVDB
28462
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-0506
vendor-advisory
x_refsource_FEDORA
29986
third-party-advisory
x_refsource_SECUNIA
29056
third-party-advisory
x_refsource_SECUNIA
HPSBMA02331
vendor-advisory
x_refsource_HP
20080416 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
mailing-list
x_refsource_BUGTRAQ
20080115 vuldb confusion between OpenPegasus issues
mailing-list
x_refsource_VIM
ADV-2008-0063
vdb-entry
x_refsource_VUPEN
27188
vdb-entry
x_refsource_BID
29785
third-party-advisory
x_refsource_SECUNIA
ADV-2008-1234
vdb-entry
x_refsource_VUPEN
FEDORA-2008-0572
vendor-advisory
x_refsource_FEDORA
ADV-2008-1391
vdb-entry
x_refsource_VUPEN
RHSA-2008:0002
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:10282
vdb-entry
signature
x_refsource_OVAL
ADV-2008-0638
vdb-entry
x_refsource_VUPEN
27172
vdb-entry
x_refsource_BID
SSRT080000
vendor-advisory
x_refsource_HP
1019159
vdb-entry
x_refsource_SECTRACK
https://bugzilla.redhat.com/show_bug.cgi?id=426578
x_refsource_CONFIRM
28338
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now