Leon J Breedt : Security Vulnerabilities, CVEs,
Leon J Breedt pam-pgsql before 0.5.2 allows remote attackers to execute arbitrary SQL code and bypass authentication or modify user account records by injecting SQL statements into user or password fields.
Max CVSS
7.5
EPSS Score
0.70%
Published
2001-09-10
Updated
2008-09-10
Format string vulnerability in pam-pgsql 0.5.2 and earlier allows remote attackers to execute arbitrary code via the username that isp rovided during authentication, which is not properly handled when recording a log message.
Max CVSS
7.5
EPSS Score
0.38%
Published
2003-08-27
Updated
2008-09-10
2 vulnerabilities found