Authentication Bypass Vulnerability in libpam-pgsql (pam_pgsql) 0.7

Authentication Bypass Vulnerability in libpam-pgsql (pam_pgsql) 0.7

CVE-2013-0191 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

libpam-pgsql (aka pam_pgsql) 0.7 does not properly handle a NULL value returned by the password search query, which allows remote attackers to bypass authentication via a crafted password.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.