Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2004-0653

EPSS 0.18% · P40
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2004-0653

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Solaris 9, when configured as a Kerberos client with patch 112908-12 or 115168-03 and using pam_krb5 as an "auth" module with the debug feature enabled, records passwords in plaintext, which could allow local users to gain other user's passwords by reading log files.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Sun Solaris补丁112908-12和115168-03明文口令记录漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Solaris是一款由Sun Microsystems公司开发和维护的商业性质UNIX操作系统。 Solaris系统安装了带补丁的112908-12或115168-03 Kerberos客户端存在问题,可导致验证密码以明文方式被记录。 当安装了112908-12或115168-03补丁的Kerberos客户端,并使用pam_krb5作为"auth"模块的任何服务,那么当pam_krb5使用调试功能时,用户的验证口令在LOG_DEBUG条件下会以明文方式记录。 <*链接:http://sunsolve.su
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2004-0653

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2004-0653

登录查看更多情报信息。

Same Patch Batch · n/a · 2004-07-13 · 39 CVEs total

CVE-2004-0676Fastream NETFile FTP/Web Server输入验证错误漏洞
CVE-2004-0667RSBAC 安全漏洞
CVE-2004-0668IBM Lotus Domino Server Web访问恶意邮件查看远程拒绝服务漏洞
CVE-2004-0669IBM Lotus Domino IMAP存储空间限额可更改漏洞
CVE-2004-0670ZyXEL Prestige Router验证密码字段远程拒绝服务漏洞
CVE-2004-0671Symantec Brightmail Anti-spam未授权信息泄露漏洞
CVE-2004-0672Netegrity IdentityMinder Web Edition 跨站脚本(XSS)漏洞
CVE-2004-0673SCI Photo聊天服务器跨站脚本漏洞
CVE-2004-0674Enterasys XSR Security路由器记录路由远程拒绝服务漏洞
CVE-2004-0675McMurtrey/Whitaker & Associates Cart32 GetLatestBuilds脚本跨站脚本攻击漏洞
CVE-2004-0666Popclient电子邮件信息缓冲区溢出漏洞
CVE-2004-0677Fastream NETFile FTP 服务器服务拒绝漏洞
CVE-2004-067812Planet Chat Server跨站脚本漏洞
CVE-2004-0679Unreal IRCD Cloak.C IP地址泄露漏洞
CVE-2004-0680Zoom Model 5560 X3 Ethernet ADSL Modem默认后门帐户漏洞
CVE-2004-0681Comersus Open Technologies Comersus Cart多个安全漏洞
CVE-2004-0682Comersus Open Technologies Comersus Cart多个安全漏洞
CVE-2004-0683Symantec Norton AntiVirus 2002 and 2003 服务拒绝漏洞
CVE-2004-0684WebSphere Edge Component Caching Proxy服务拒绝漏洞
CVE-2004-0657ntpd 输入验证错误漏洞

Showing top 20 of 39 CVEs. View all on vendor page &rarr; →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2004-0653

No comments yet

Leave a comment