← CVECheck
HomeVulnerabilities

CVE-2004-0653 — LOW severity vulnerability (Solaris 9, when configured as a Kerberos client with patch 1)

Solaris 9, when configured as a Kerberos client with patch 112908-12 or 115168-03 and using pam_krb5 as an "auth" module with the debug feature enabled, records passwords in plaintext, which could allow local users to gain other user's passwords by reading log files.

CVE IDCVE-2004-0653
SeverityLOW
CVSS score2.1
CVSS vectorAV:L/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2004-08-06
Last modified2026-04-16
DescriptionSolaris 9, when configured as a Kerberos client with patch 112908-12 or 115168-03 and using pam_krb5 as an "auth" module with the debug feature enabled, records passwords in plaintext, which could allow local users to gain other user's passwords by reading log files.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →