Candidate: CVE-2011-0438
PublicDate: 2011-03-15 17:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0438
Description:
 nslcd/pam.c in the nss-pam-ldapd 0.8.0 PAM module returns a success code
 when a user is not found in LDAP, which allows remote attackers to bypass
 authentication.
Ubuntu-Description:
Notes:
Bugs:
Priority: high
Discovered-by:
Assigned-to:
CVSS: 

Patches_nss-pam-ldapd:
upstream_nss-pam-ldapd: released (0.8.1)
dapper_nss-pam-ldapd: DNE
hardy_nss-pam-ldapd: DNE
karmic_nss-pam-ldapd: DNE
lucid_nss-pam-ldapd: not-affected (0.8.0 only)
maverick_nss-pam-ldapd: not-affected (0.8.0 only)
devel_nss-pam-ldapd: not-affected (0.8.0 only)