FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Buffer overflow in pam_smb password handling

Affected packages
pam_smb < 1.9.9_3

Details

VuXML ID 2bcd2d24-24ca-11d8-82e5-0020ed76ef5a
Discovery 2003-10-25
Entry 2003-10-25
Modified 2003-10-25

Applications utilizing pam_smb can be compromised by any user who can enter a password. In many cases, this is a remote root compromise.

References

CVE Name CVE-2003-0686
URL http://www.skynet.ie/~airlied/pam_smb/