Vulnerabilities

CVE-2008-1926

by Fred · 23/04/2008

Argument injection vulnerability in login (login-utils/login.c) in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login name, aka "audit log injection."

Date published : 2008-04-23

http://www.securityfocus.com/bid/28983

http://www.securityfocus.com/archive/1/507854/100/0/threaded

Similar

Tags: Cybersecurity Alert