Vulnerability Details CVE-2004-0366
SQL injection vulnerability in the libpam-pgsql library before 0.5.2 allows attackers to execute arbitrary SQL statements.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/11237
- http://www.debian.org/security/2004/dsa-469
- http://www.securityfocus.com/bid/10266
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15651
- http://secunia.com/advisories/11237
- http://www.debian.org/security/2004/dsa-469
- http://www.securityfocus.com/bid/10266
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15651
Products affected by CVE-2004-0366
-
cpe:2.3:a:pam-pgsql:pam-pgsql:0.1
-
cpe:2.3:a:pam-pgsql:pam-pgsql:0.2
-
cpe:2.3:a:pam-pgsql:pam-pgsql:0.3
-
cpe:2.3:a:pam-pgsql:pam-pgsql:0.3.1
-
cpe:2.3:a:pam-pgsql:pam-pgsql:0.4
-
cpe:2.3:a:pam-pgsql:pam-pgsql:0.5
-
cpe:2.3:a:pam-pgsql:pam-pgsql:0.5.1