← CVECheck
HomeVulnerabilities

CVE-2003-0672 — HIGH severity vulnerability (Format string vulnerability in pam-pgsql 0.5.2 and earlier a)

Format string vulnerability in pam-pgsql 0.5.2 and earlier allows remote attackers to execute arbitrary code via the username that isp rovided during authentication, which is not properly handled when recording a log message.

CVE IDCVE-2003-0672
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2003-08-27
Last modified2026-04-16
DescriptionFormat string vulnerability in pam-pgsql 0.5.2 and earlier allows remote attackers to execute arbitrary code via the username that isp rovided during authentication, which is not properly handled when recording a log message.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →