Vulnerabilities > Chetcpasswd > Chetcpasswd > 2.3.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-12-21 | CVE-2006-6681 | Resource Management Errors vulnerability in Chetcpasswd 2.3.3 Pedro Lineu Orso chetcpasswd 2.3.3 does not have a rate limit for client requests, which might allow remote attackers to determine passwords via a dictionary attack. | 7.5 |
2002-12-31 | CVE-2002-2221 | Local Privilege Escalation vulnerability in Chetcpasswd 2.3.1/2.3.3/2.4.1 Untrusted search path vulnerability in Pedro Lineu Orso chetcpasswd 2.4.1 and earlier allows local users to gain privileges via a modified PATH that references a malicious cp binary. | 6.2 |