CVE-2003-0174

2003-04-2904:00:00

mitre

www.cve.org

9.4 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.1%

JSON

The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.

References

ftp://patches.sgi.com/support/free/security/advisories/20030407-01-P

www.ciac.org/ciac/bulletins/n-084.shtml

www.securityfocus.com/bid/7442

exchange.xforce.ibmcloud.com/vulnerabilities/11860