RSS   Vulnerabilities for 'Pam ssh'   RSS

2007-02-08
 
CVE-2007-0844

 

 
The auth_via_key function in pam_ssh.c in pam_ssh before 1.92, when the allow_blank_passphrase option is disabled, allows remote attackers to bypass authentication restrictions and use private encryption keys requiring a blank passphrase by entering a non-blank passphrase.

 


Copyright 2024, cxsecurity.com

 

Back to Top