Format string vulnerability in pam-pgsql 0.5.2 and earlier allows remote attackers to execute arbitrary code via the username that isp rovided during authentication, which is not properly handled when recording a log message.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Pam-pgsql | Leon_j_breedt | 0.5.1 (including) | 0.5.1 (including) |
Pam-pgsql | Leon_j_breedt | 0.5.2 (including) | 0.5.2 (including) |