Unrated severityNVD Advisory· Published Sep 10, 2001· Updated Jun 16, 2026

CVE-2001-1369

Description

Leon J Breedt pam-pgsql before 0.5.2 allows remote attackers to execute arbitrary SQL code and bypass authentication or modify user account records by injecting SQL statements into user or password fields.

Affected products

Leon J Breedt/Pam Pgsql3 versions
cpe:2.3:a:leon_j_breedt:pam-pgsql:0.5.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:leon_j_breedt:pam-pgsql:0.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:leon_j_breedt:pam-pgsql:0.5.2:*:*:*:*:*:*:*
- (no CPE)range: <0.5.2

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.iss.net/security_center/static/7110.phpnvdPatchVendor Advisory
ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:14.pam-pgsql.ascnvd
www.securityfocus.com/bid/3319nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000