MidnightBSD

Advisories for lucas_clemente_vella

CVE-2013-0191 MEDIUM

libpam-pgsql (aka pam_pgsql) 0.7 does not properly handle a NULL value returned by the password search query, which allows remote attackers to bypass authentication via a crafted password.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
lucas_clemente_vella libpam-pgsql 0.7