CVE-2013-0191

Publication date

2014-06-03 14:00:00

Family

redhat

State

PUBLISHED

Description

libpam-pgsql (aka pam_pgsql) 0.7 does not properly handle a NULL value returned by the password search query, which allows remote attackers to bypass authentication via a crafted password.