CVE-2011-4966
EPSS 0.62%
Description
modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password.
How to fix CVE-2011-4966
To remediate CVE-2011-4966, upgrade the affected package to a fixed version below.
- Debian/freeradius—upgrade to 2.1.12+dfsg-1.2 or later
Is CVE-2011-4966 being exploited?
Low — EPSS is 0.6%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.1.12+dfsg-1.2