CVE-2004-1001

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2004-1001

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2004-1001.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2004-1001

Downstream

DEBIAN-CVE-2004-1001

DSA-585-1

Published

2005-03-01T05:00:00Z

Modified

2026-04-10T03:35:58.050599Z

Summary

[none]

Details

Unknown vulnerability in the passwdcheck function in Shadow 4.0.4.1, and possibly other versions before 4.0.5, allows local users to conduct unauthorized activities when an error from a pamchauthtok function call is not properly handled.

References

http://secunia.com/advisories/13028
http://www.debian.org/security/2004/dsa-585
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000894
https://exchange.xforce.ibmcloud.com/vulnerabilities/17902

CVE-2004-1001

Affected packages