Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Mandrake Local Security Checks --> Category: infos

MDKSA-2003:088: pam_ldap Vulnerability Scan

Vulnerability Scan Summary
Check for the version of the pam_ldap package

Detailed Explanation for this Vulnerability Test

The remote host is missing the patch for the advisory MDKSA-2003:088 (pam_ldap).

A bug was fixed in pam_ldap 162 with the pam_filter mechanism which is commonly
used for host-based access restriction in environments using LDAP for
authentication. Mandrake Linux 9.1 provided pam_ldap 161 which had this problem
and as a result, systems relying on pam_filter for host-based access restriction
would allow any user, regardless of the host attribute associated with their
account, to log into the system. All users who use LDAP-based authentication are
encouraged to upgrade immediately.

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.