Vulnerabilities > CVE-2000-0957 - Unspecified vulnerability in PAM Mysql PAM Mysql
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The pluggable authentication module for mysql (pam_mysql) before 0.4.7 does not properly cleanse user input when constructing SQL statements, which allows attackers to obtain plaintext passwords or hashes.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |