Oval Definition:oval:org.opensuse.security:def:20065170
Revision Date:2022-05-20Version:1
Title:CVE-2006-5170
Description:

pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the pam_authenticate function to return a success code even if authentication has failed, as originally reported for xscreensaver.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2006-5170
Mitre CVE-2006-5170
SUSE CVE-2006-5170
SUSE-SR:2006:027
SUSE-SR:2006:027
Platform(s):Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
SUSE Linux Enterprise Server 10 SP1 for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP1 for IBM POWER
SUSE Linux Enterprise Server 10 SP1 for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP1 for IPF
SUSE Linux Enterprise Server 10 SP1 for x86
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
Product(s):
Definition Synopsis
  • sles9-nld is installed
  • AND Package Information
  • pam_ldap-32bit less than 9-200610241503
  • OR pam_ldap less than 169-28.7
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • pam_ldap-184-147 is installed
  • OR pam_ldap-32bit-184-147 is installed
  • OR pam_ldap-x86-184-147 is installed
    • Definition Synopsis
  • sles10-sp1-online is installed
  • AND Package Information
  • nss_ldap-32bit less than 246-14.13
  • OR nss_ldap-64bit less than 246-14.13
  • OR nss_ldap-x86 less than 246-14.13
  • OR nss_ldap less than 246-14.13
  • OR pam_ldap-32bit less than 180-13.12
  • OR pam_ldap-64bit less than 180-13.12
  • OR pam_ldap-x86 less than 180-13.12
  • OR pam_ldap less than 180-13.12
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • pam_ldap-184-147.20 is installed
  • OR pam_ldap-32bit-184-147.20 is installed
  • OR pam_ldap-x86-184-147.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • pam_ldap-184-147.20 is installed
  • OR pam_ldap-32bit-184-147.20 is installed
  • OR pam_ldap-x86-184-147.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • pam_ldap-184-147.20 is installed
  • OR pam_ldap-32bit-184-147.20 is installed
  • OR pam_ldap-x86-184-147.20 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • pam_ldap-184-147.20 is installed
  • OR pam_ldap-32bit-184-147.20 is installed
  • OR pam_ldap-x86-184-147.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • pam_ldap-184-147.20 is installed
  • OR pam_ldap-32bit-184-147.20 is installed
  • OR pam_ldap-x86-184-147.20 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server 11 SP3 is installed
  • OR SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • pam_ldap-184-147.20 is installed
  • OR pam_ldap-32bit-184-147.20 is installed
  • OR pam_ldap-x86-184-147.20 is installed
    • BACK