Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unspecified vulnerability in the SQL logging facility in PAM-MySQL 0.6.x before 0.6.2 and 0.7.x before 0.7pre3 allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors, probably involving the pam_mysql_sql_log function when being used in vsftpd, which does not include the IP address argument to an sprintf call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PAM-MySQL执行代码和拒绝服务漏洞
Vulnerability Description
PAM-MySQL 0.6.x中低于0.6.2的版本以及0.7.x中低于0.7pre3的版本中的SQL记录功能存在未明漏洞,远程攻击者可以通过未明向量,可能在用于vsftpd中时含pam_mysql_sql_log函数,这种使用时sprint调用不含有IP地址参数,从而发起拒绝服务攻击(分段故障)。
CVSS Information
N/A
Vulnerability Type
N/A