Strix
26.1K

CVE-2011-4966

UnknownEPSS 1.38%

Last modified

CVE-2011-4966 is a vulnerability of currently unknown severity. modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password.. EPSS estimates a 1.38% chance of exploitation in the next 30 days.

Description

modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password.

Metrics

EPSS Probability
1.38%

68.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
FreeradiusFreeradiusAll versions
FreeradiusFreeradius<= 2.2.0
FreeradiusFreeradius0.1
FreeradiusFreeradius0.2
FreeradiusFreeradius0.3
FreeradiusFreeradius0.4
FreeradiusFreeradius0.5
FreeradiusFreeradius0.6
FreeradiusFreeradius0.7
FreeradiusFreeradius0.7.1
FreeradiusFreeradius0.8
FreeradiusFreeradius0.8.1
FreeradiusFreeradius0.9
FreeradiusFreeradius0.9.0
FreeradiusFreeradius0.9.1
FreeradiusFreeradius0.9.2
FreeradiusFreeradius0.9.3
FreeradiusFreeradius1.0.0
FreeradiusFreeradius1.0.1
FreeradiusFreeradius1.0.2
FreeradiusFreeradius1.0.3
FreeradiusFreeradius1.0.4
FreeradiusFreeradius1.0.5
FreeradiusFreeradius1.1.0
FreeradiusFreeradius1.1.1
FreeradiusFreeradius1.1.2
FreeradiusFreeradius1.1.3
FreeradiusFreeradius1.1.4
FreeradiusFreeradius1.1.5
FreeradiusFreeradius1.1.6
FreeradiusFreeradius1.1.7
FreeradiusFreeradius1.1.8
FreeradiusFreeradius2.0
FreeradiusFreeradius2.0.1
FreeradiusFreeradius2.0.2
FreeradiusFreeradius2.0.3
FreeradiusFreeradius2.0.4
FreeradiusFreeradius2.0.5
FreeradiusFreeradius2.1.0
FreeradiusFreeradius2.1.1
FreeradiusFreeradius2.1.2
FreeradiusFreeradius2.1.3
FreeradiusFreeradius2.1.4
FreeradiusFreeradius2.1.6
FreeradiusFreeradius2.1.7
FreeradiusFreeradius2.1.8
FreeradiusFreeradius2.1.9
FreeradiusFreeradius2.1.10
FreeradiusFreeradius2.1.11
FreeradiusFreeradius2.1.12

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2011-4966?
modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password.
How severe is CVE-2011-4966?
Severity scoring for CVE-2011-4966 is pending analysis. The EPSS model estimates a 1.38% probability of exploitation in the next 30 days.
How do I fix CVE-2011-4966?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2011-4966?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST