VULHUB ™

Both pam_ldap and squid_auth_ldap contain multiple format string vulnerabilities. The conditions are present in their logging code. If exploited, it may be possible for an attacker to potentially write to arbitrary locations in process memory, and potentially execute code.

Both pam_ldap and squid_auth_ldap contain multiple format string vulnerabilities. The conditions are present in their logging code. If exploited, it may be possible for an attacker to potentially write to arbitrary locations in process memory, and potentially execute code.