← CVECheck
HomeVulnerabilities

CVE-2003-0174 — CRITICAL severity vulnerability (The LDAP name service (nsd) in IRIX 6.5.19 and earlier does)

The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.

CVE IDCVE-2003-0174
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-346
StatusModified
Published2003-05-12
Last modified2026-04-16
DescriptionThe LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →