CVE-2009-2482: CVE-2009-2482

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-2482

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The pam_unix module in OpenPAM in NetBSD 4.0 before 4.0.2 and 5.0 before 5.0.1 allows local users to change the current root password if it is already known, even when they are not in the wheel group.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

NetBSD pam_unix模块非授权更改root口令漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

NetBSD是一款免费开放源代码的UNIX性质的操作系统。 NetBSD所提供的pam_unix认证模块没有正确地验证执行口令更改的用户，通过认证的非特权用户如果知道了旧的root口令就可以更改该口令。通常认证为root仅限于被称为wheel组的成员，以限制泄露root口令所造成的影响。因此，能够更改root口令应仅限于认证为root的用户。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-2482

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-2482

Please Login to view more intelligence information

http://secunia.com/advisories/35553third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/55284vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/35465vdb-entryx_refsource_BID
http://www.securitytracker.com/id?1022432vdb-entryx_refsource_SECTRACK
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-004.txt.ascvendor-advisoryx_refsource_NETBSD
https://exchange.xforce.ibmcloud.com/vulnerabilities/51312vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2009-2482

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2009-2482

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2009-2482

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-2482

III. Intelligence Information for CVE-2009-2482

New Vulnerabilities

V. Comments for CVE-2009-2482

Leave a comment