LDAP nsd in IRIX 6.5.19 and Earlier Allows Passwordless Login

LDAP nsd in IRIX 6.5.19 and Earlier Allows Passwordless Login

CVE-2003-0174 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.

Learn more about our Cis Benchmark Audit For Server Software.