CVE-2010-0015

nis/nss_nis/nis-pwd.c in the GNU C Library (aka glibc or libc6) 2.7 and Embedded GLIBC (EGLIBC) 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:gnu:glibc:2.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.10.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-01-14 18:30

Updated : 2023-12-10 11:03


NVD link : CVE-2010-0015

Mitre link : CVE-2010-0015

CVE.ORG link : CVE-2010-0015


JSON object : View

Products Affected

gnu

  • glibc
CWE
CWE-255

Credentials Management Errors